PE File Analysis tool

* Load specific file for analysis
* Show important information about the PE file format
* Disassemble compiled executable in an interactive shell
* Find YARA rules that the file is compatible with

1. Run the tool python pefa.py

2. Loads the wanted file Press load or l and enter file's full path.

3. Choose your option! You can use the Help menu.

4. info

6. yara

7. dis

Allows to reverse-engineer the file start from its entry point, in an interactive disassembler.

Copyright (c) 2022 Barak Aharoni. All Rights Reserved.