145 skills found · Page 1 of 5
erocarrera / Pefilepefile is a Python module to read and work with PE (Portable Executable) files
blackberry / Pe TreePython module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall to dump in-memory PE files and reconstruct imports.
petoolse / PetoolsPE Tools - Portable executable (PE) manipulation toolkit
JusticeRage / ManalyzeA static analyzer for PE executables.
mgeeky / ProtectMyToolingMulti-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.
hasherezade / BearparserPortable Executable parsing library (from PE-bear)
secana / PeNetPortable Executable (PE) library written in .Net
struppigel / PortExJava library to analyse Portable Executable files with a special focus on malware analysis and PE malformation robustness
Maldev-Academy / ExecutePeFromPngViaLNKExtract and execute a PE embedded within a PNG file using an LNK file.
saferwall / PeA :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.
NtDallas / MemLoaderRun native PE or .NET executables entirely in-memory. Build the loader as an .exe or .dll—DllMain is Cobalt Strike UDRL-compatible
nodejs / PostjectEasily inject arbitrary read-only resources into executable formats (Mach-O, PE, ELF) and use it at runtime.
gitGNU / ObjconvObject file converter This utility can be used for converting object files between COFF/PE, OMF, ELF and Mach-O formats for all 32-bit and 64-bit x86 platforms. Can modify symbol names in object files. Can build, modify and convert function libraries across platforms. Can dump object files and executable files. Also includes a very good disassembler supporting the SSE4, AVX, AVX2, AVX512, FMA3, FMA4, XOP and Knights Corner instruction sets.
xoofx / LibObjectFileLibObjectFile is a .NET library to read, manipulate and write linker and executable object files (e.g ELF, PE, DWARF, ar...)
codypierce / Hackers Grephackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
EddieIvan01 / MemexecA library for loading and executing PE (Portable Executable) from memory without ever touching the disk
cpu0x00 / SharpReflectivePEInjectionreflectively load and execute PEs locally and remotely bypassing EDR hooks
zfigura / SemblanceDisassembler for Windows executables. Supports 16-bit NE (New Executable), MZ (DOS), and PE (Portable Executable, i.e. Win32) files.
dishather / RichprintPrint compiler information stored in Rich Header of PE executables.
sashs / FilebytesLibrary to read and edit files in the following formats: Executable and Linking Format (ELF), Portable Executable (PE), MachO and OAT (Android Runtime)
