pe

There are 9 repositories under pe topic.

GeyserMC / Geyser
A bridge/proxy allowing you to connect to Minecraft: Java Edition servers with Minecraft: Bedrock Edition.
minecraft bedrock java protocol packet pe geyser bedrock-edition java-edition proxy translator geysermc bedrock-to-java spigot bungee velocity hacktoberfest fabric
Language:Java 4469
lief-project / LIEF
LIEF - Library to Instrument Executable Formats
reverse-engineering malware-analysis binary-analysis parser modification executable-formats elf macho pe lief parsing sdk python android dex oat art vdex rust
Language:C++ 4182
secretsquirrel / the-backdoor-factory
Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
file-infector bdf python capstone pe macho elf
Language:Python 3253
secretsquirrel / SigThief
Stealing Signatures and Making One Invalid Signature at a Time
pe python testing-antivirus certificates python3
Language:Python 1961
m4b / goblin
An impish, cross-platform binary parsing crate, written in Rust
archive binary-analysis cross-platform elf mach pe reverse-engineering
Language:Rust 1139
EgeBalci / amber
Reflective PE packer.
packer pe crypter assembly stub shellcode shellcode-loader payload amber
Language:Go 1122
JusticeRage / Manalyze
A static analyzer for PE executables.
malware static analysis pe
Language:YARA 993
XPEViewer
horsicq / XPEViewer
PE file viewer/editor for Windows, Linux and MacOS.
portable-executable pe-format reverse-engineering windows-system disassembler pe hacktoberfest hacktoberfest2023
Language:C++ 880
Washi1337 / AsmResolver
A library for creating, reading and editing PE files and .NET modules.
pe-analyzer disassembler native dotnet metadata-editor reader writer cil il msil portable-executable pe reverse-engineering framework
Language:C# 800
aaaddress1 / RunPE-In-Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
runpe packer windows pe loader malware win32
Language:C++ 784
NUL0x4C / AtomPePacker
A Highly capable Pe Packer
edr-bypass packer pe
Language:C 667
hasherezade / bearparser
Portable Executable parsing library (from PE-bear)
pe parser-library multiplatform bearparser
Language:C++ 637
forrest-orr / moneta
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
moneta memory scanner windows usermode malware ioc dump process hollowing injection shellcode reflective artifact pe
Language:C++ 606
t00sh / rop-tool
A tool to help you write binary exploits
rop exploit elf pe macho x86 x86-64 arm mips
Language:C 603
frkngksl / Shoggoth
Shoggoth: Asmjit Based Polymorphic Encryptor
asmjit bof coff loader obfuscator pe polymorphic-engine polymorphism shellcode
Language:C++ 587
PeNet
secana / PeNet
Portable Executable (PE) library written in .Net
pe pefile portable-executable pe-header windows import-hash imphash malware-analysis
Language:C# 564
GeyserMC / Floodgate
Hybrid mode plugin to allow for connections from Geyser to join online mode servers.
geysermc geyser java bedrock bedrock-edition pe bedrock-to-java java-edition plugin bukkit bungee velocity minecraft floodgate hacktoberfest
Language:Java 537
alphaSeclab / windows-security
Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.
windows-security uac windows-defender amsi pe dll powershell sysinternal applocker
470
cyberark / DLLSpy
DLL Hijacking Detection Tool
permission pe privilege-escalation dll-hijacking dll
Language:C++ 469
mewmew / dissection
The dissection of a simple "hello world" ELF binary.
binary-analysis elf pe hello hello-world assembly disassembly dissection
Language:Assembly 455
Wenzel / checksec.py
Checksec tool in Python, Rich output. Based on LIEF
checksec elf pe
Language:Python 303
czs108 / Windows-PE-Packer
🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.
windows reverse-engineering security pe
Language:C 299
saferwall / pe
A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.
pe-file portable-executable malware pe coff pe-malformations malware-analysis parsing go golang parser binary-analysis reverse-engineering pe-format
Language:Go 290
Antonin-Deniau / cave_miner
Search for code cave in all binaries
codecave cave code kaitai-struct kaitai elf mach-o pe code-injection
Language:Python 256
hasherezade / IAT_patcher
Persistent IAT hooking application - based on bearparser
pe iat hooking multiplatform iat-hooking pe-file pe-format bearparser
Language:C++ 242
can1357 / linux-pe
COFF and Portable Executable format described using standard C++ with no dependencies.
coff pe portable-executable windows
Language:C++ 240
ghostplant / ubuntu-pe
Ubuntu PE: A Portable and Energy-Saving Edition for Ubuntu LTS
linux pe ubuntu
Language:Makefile 235
HoShiMin / formatPE
A bunch of parsers for PE and PDB formats in C++
cpp header-only modern-cpp pdb pdb-files pdb-parser pdb-structure pe pe-analyzer pe-applications pe-file pe-format portable-executable pe-parser
Language:C++ 212
forrest-orr / artifacts-kit
Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
malware artifact kit forensics generator dll hollowing phtnaom pe shellcode moating header wiping mirroring
Language:C++ 209
wolfram77web / app-peid
PEiD detects most common packers, cryptors and compilers for PE files.
pe disassembly reverse-engineering
Language:HTML 192
toptechevangelist / awesome-platform-engineering
An awesome list of Platform Engineering 平台工程列表
awesome-list engineering platform pe platform-engineering idp dx internal-developer-platform cicd developer-experience devops self-service engineer-experience devex internal-developer-portal hacktoberfest paap
178
jovibor / Pepper
PE32 (x86) and PE32+ (x64) binaries analysis tool, resources viewer/extractor.
pe-file pe-analyzer pe-format pe-viewer files-viewer pe portable-executable pepper viewer binary-analysis
Language:C++ 130
polycone / pe-loader
A Windows PE format file loader
windows executable pe loader internals
Language:C++ 129
EntySec / HatVenom
HatVenom is a powerful payload generation tool that provides support for all common platforms and architectures.
payload exploit shellcode shellcode-injection architectures elf macho pe malware entysec payloads exploits shellcodes binary executable exe binary-exploitation
Language:Python 127
sashs / filebytes
Library to read and edit files in the following formats: Executable and Linking Format (ELF), Portable Executable (PE), MachO and OAT (Android Runtime)
elf oat pe pe32 mach-o python
Language:Python 125
p0dalirius / pdbdownload
A Python script to download PDB files associated with a Portable Executable (PE)
pdb microsoft debug portable-executable tool download pe
Language:Python 108

pe

GeyserMC / Geyser

lief-project / LIEF

secretsquirrel / the-backdoor-factory

secretsquirrel / SigThief

m4b / goblin

EgeBalci / amber

JusticeRage / Manalyze

horsicq / XPEViewer

Washi1337 / AsmResolver

aaaddress1 / RunPE-In-Memory

NUL0x4C / AtomPePacker

hasherezade / bearparser

forrest-orr / moneta

t00sh / rop-tool

frkngksl / Shoggoth

secana / PeNet

GeyserMC / Floodgate

alphaSeclab / windows-security

cyberark / DLLSpy

mewmew / dissection

Wenzel / checksec.py

czs108 / Windows-PE-Packer

saferwall / pe

Antonin-Deniau / cave_miner

hasherezade / IAT_patcher

can1357 / linux-pe

ghostplant / ubuntu-pe

HoShiMin / formatPE

forrest-orr / artifacts-kit

wolfram77web / app-peid

toptechevangelist / awesome-platform-engineering

jovibor / Pepper

polycone / pe-loader

EntySec / HatVenom

sashs / filebytes

p0dalirius / pdbdownload