pe

There are 12 repositories under pe topic.

GeyserMC / Geyser
A bridge/proxy allowing you to connect to Minecraft: Java Edition servers with Minecraft: Bedrock Edition.
minecraft bedrock java protocol packet pe geyser bedrock-edition java-edition proxy translator geysermc bedrock-to-java spigot bungee velocity hacktoberfest fabric minecraft-bedrock-edition
Language:Java 5300
lief-project / LIEF
LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
reverse-engineering malware-analysis binary-analysis parser modification executable-formats elf macho pe lief parsing sdk python android dex oat art vdex rust
Language:C++ 5113
secretsquirrel / the-backdoor-factory
Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
bdf capstone elf file-infector macho pe python
Language:Python 3414
secretsquirrel / SigThief
Stealing Signatures and Making One Invalid Signature at a Time
certificates pe python python3 testing-antivirus
Language:Python 2333
m4b / goblin
An impish, cross-platform binary parsing crate, written in Rust
archive binary-analysis cross-platform elf mach pe reverse-engineering
Language:Rust 1377
EgeBalci / amber
Reflective PE packer.
packer pe crypter assembly stub shellcode shellcode-loader payload amber
Language:Go 1357
XPEViewer
horsicq / XPEViewer
PE file viewer/editor for Windows, Linux and MacOS.
portable-executable pe-format reverse-engineering windows-system disassembler pe hacktoberfest hacktoberfest2023
Language:QMake 1151
JusticeRage / Manalyze
A static analyzer for PE executables.
analysis malware pe static
Language:YARA 1088
Washi1337 / AsmResolver
A library for creating, reading and editing PE files and .NET modules.
assembler cil disassembler dotnet il malware-analysis msil parser pe portable-executable reader reverse-engineering writer
Language:C# 1013
aaaddress1 / RunPE-In-Memory
Run a Exe File (PE Module) in memory (like an Application Loader)
runpe packer windows pe loader malware win32
Language:C++ 929
forrest-orr / moneta
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
moneta memory scanner windows usermode malware ioc dump process hollowing injection shellcode reflective artifact pe
Language:C++ 781
frkngksl / Shoggoth
Shoggoth: Asmjit Based Polymorphic Encryptor
asmjit bof coff loader obfuscator pe polymorphic-engine polymorphism shellcode
Language:C++ 755
hasherezade / bearparser
Portable Executable parsing library (from PE-bear)
bearparser multiplatform parser-library pe
Language:C++ 657
PeNet
secana / PeNet
Portable Executable (PE) library written in .Net
pe pefile portable-executable pe-header windows import-hash imphash malware-analysis
Language:C# 634
GeyserMC / Floodgate
Hybrid mode plugin to allow for connections from Geyser to join online mode servers.
bedrock bedrock-edition bedrock-to-java bukkit bungee floodgate geyser geysermc hacktoberfest java java-edition minecraft pe plugin velocity
Language:Java 625
t00sh / rop-tool
A tool to help you write binary exploits
rop exploit elf pe macho x86 x86-64 arm mips
Language:C 605
cyberark / DLLSpy
DLL Hijacking Detection Tool
permission pe privilege-escalation dll-hijacking dll
Language:C++ 529
alphaSeclab / windows-security
Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.
amsi applocker dll pe powershell sysinternal uac windows-defender windows-security
494
mewmew / dissection
The dissection of a simple "hello world" ELF binary.
binary-analysis elf pe hello hello-world assembly disassembly dissection
Language:Assembly 463
saferwall / pe
A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.
pe-file portable-executable malware pe coff pe-malformations malware-analysis parsing go golang parser binary-analysis reverse-engineering pe-format
Language:Go 370
czs108 / Windows-PE-Packer
🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.（使用C和Intel x86汇编开发的Windows x86可执行文件打包工具，打包后的新文件可以阻碍逆向工程。）
windows reverse-engineering security pe
Language:C 347
Wenzel / checksec.py
Checksec tool in Python, Rich output. Based on LIEF
checksec elf pe
Language:Python 345
vpand / icpp
Running C++ in anywhere like a script.
clang cpp elf llvm macho pe unicorn vm aarch64 arm64 x86-64 interpreter script linux macos windows modern-cpp repl android ios
Language:C++ 333
can1357 / linux-pe
COFF and Portable Executable format described using standard C++ with no dependencies.
pe portable-executable coff windows
Language:C++ 329
wolfram77web / app-peid
PEiD detects most common packers, cryptors and compilers for PE files.
pe disassembly reverse-engineering
Language:HTML 311
Astral-PE
DosX-dev / Astral-PE
Astral-PE is a low-level mutator (Headers/EP obfuscator) for native Windows PE files (x32/x64)
cybersecurity hacktoberfest low-level mutator obfuscation obfuscator pe infosec dotnet native pentest static-analysis malware-analysis reverse-engineering cpp cs security low-level-programming
Language:C# 310
ghostplant / Ubuntu-Tiny
A Tiny, Faster and Power-Saving Ubuntu MATE LTS
linux pe ubuntu
Language:Makefile 306
Antonin-Deniau / cave_miner
Search for code cave in all binaries
codecave cave code kaitai-struct kaitai elf mach-o pe code-injection
Language:Kaitai Struct 285
hasherezade / IAT_patcher
Persistent IAT hooking application - based on bearparser
pe iat hooking multiplatform iat-hooking pe-file pe-format bearparser
Language:C++ 263
HoShiMin / formatPE
A bunch of parsers for PE and PDB formats in C++
cpp header-only modern-cpp pdb pdb-files pdb-parser pdb-structure pe pe-analyzer pe-applications pe-file pe-format pe-parser portable-executable
Language:C++ 257
toptechevangelist / awesome-platform-engineering
An awesome list of Platform Engineering 平台工程列表
awesome-list engineering platform pe platform-engineering idp dx internal-developer-platform cicd developer-experience devops self-service engineer-experience devex internal-developer-portal hacktoberfest paap
237
forrest-orr / artifacts-kit
Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
malware artifact kit forensics generator dll hollowing phtnaom pe shellcode moating header wiping mirroring
Language:C++ 233
jovibor / Pepper
PE32 (x86) and PE32+ (x64) binaries analysis tool, resources viewer/extractor.
pe-file pe-analyzer pe-format pe-viewer files-viewer pe portable-executable pepper viewer binary-analysis
Language:C++ 172
DLL-Injector
adamhlt / DLL-Injector
DLL Injector (LoadLibrary) in C++ (x86 / x64) - LoadLibrary DLL injector
dll-injection dll-injector loadlibrary pe winapi windows windows-internals
Language:C++ 167
jstrosch / sclauncher
A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files from shellcode.
malware-analysis pe portable-executable reverse-engineering shellcode x64 x86
Language:C 166
polycone / pe-loader
A Windows PE format file loader
windows executable pe loader internals
Language:C++ 148

pe

GeyserMC / Geyser

lief-project / LIEF

secretsquirrel / the-backdoor-factory

secretsquirrel / SigThief

m4b / goblin

EgeBalci / amber

horsicq / XPEViewer

JusticeRage / Manalyze

Washi1337 / AsmResolver

aaaddress1 / RunPE-In-Memory

forrest-orr / moneta

frkngksl / Shoggoth

hasherezade / bearparser

secana / PeNet

GeyserMC / Floodgate

t00sh / rop-tool

cyberark / DLLSpy

alphaSeclab / windows-security

mewmew / dissection

saferwall / pe

czs108 / Windows-PE-Packer

Wenzel / checksec.py

vpand / icpp

can1357 / linux-pe

wolfram77web / app-peid

DosX-dev / Astral-PE

ghostplant / Ubuntu-Tiny

Antonin-Deniau / cave_miner

hasherezade / IAT_patcher

HoShiMin / formatPE

toptechevangelist / awesome-platform-engineering

forrest-orr / artifacts-kit

jovibor / Pepper

adamhlt / DLL-Injector

jstrosch / sclauncher

polycone / pe-loader