Alternatives and similar repositories for peid

Users that are interested in peid are comparing it to the libraries listed below

• packing-box / dataset-packed-pe
  Dataset of packed PE samples
  ☆39Updated last year
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆132Updated last week
• OALabs / hashdb-ida
  HashDB API hash lookup plugin for IDA Pro
  ☆338Updated 3 weeks ago
• NozomiNetworks / upx-recovery-tool
  ☆109Updated 2 years ago
• elastic / die-python
  Native Python3 bindings for @horsicq's Detect-It-Easy
  ☆74Updated 5 months ago
• OALabs / hashdb
  Assortment of hashing algorithms used in malware
  ☆382Updated this week
• mandiant / dncil
  The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
  ☆168Updated 3 weeks ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆153Updated last year
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆362Updated last month
• season-lab / bluepill
  BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
  ☆127Updated 3 years ago
• nullteilerfrei / reversing-class
  LERN GHIDRA
  ☆92Updated 2 months ago
• packing-box / docker-packing-box
  Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detec…
  ☆60Updated last week
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆86Updated 2 years ago
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆218Updated 3 years ago
• ergrelet / windiff
  Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the …
  ☆351Updated this week
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆91Updated 2 years ago
• therealdreg / DbgChild
  Debug Child Process Tool (auto attach)
  ☆300Updated 2 years ago
• AGDCservices / Ghidra-Scripts
  malware analysis scripts for Ghidra
  ☆79Updated 2 years ago
• Fyyre / DrvMon
  Advanced driver monitoring utility.
  ☆217Updated 3 years ago
• ThreatLabz / tools
  Tools developed by the Zscaler ThreatLabz Threat Intelligence team
  ☆86Updated last month
• CheckPointSW / Anti-Debug-DB
  Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…
  ☆61Updated last year
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆126Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆71Updated last year
• VergiliusProject / vergilius-project
  This project provides a collection of Microsoft Windows kernel structures, unions and enumerations. Most of them are not officially docum…
  ☆220Updated this week
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆131Updated 2 years ago
• nazywam / AutoIt-Ripper
  Extract AutoIt scripts embedded in PE binaries
  ☆209Updated last year
• mandiant / xrefer
  FLARE Team's Binary Navigator
  ☆289Updated 3 weeks ago
• horsicq / xntsv
  XNTSV program for detailed viewing of system structures for Windows.
  ☆467Updated this week
• danielplohmann / idascope
  An IDA Pro extension for easier (malware) reverse engineering
  ☆115Updated 3 years ago
• advanced-threat-research / DotDumper
  An automatic unpacker and logger for DotNet Framework targeting files
  ☆264Updated 2 years ago