pefile

There are 2 repositories under pefile topic.

petoolse / petools
PE Tools - Portable executable (PE) manipulation toolkit
pefile hex-editor disassembler entropy analysis resources dumper rebuilder
954
unipacker / unipacker
Automatic and platform-independent unpacker for Windows binaries based on emulation
reverse-engineering unpacker pefile windows python security unicorn-engine debugger dumper emulation packers
Language:Python 601
hasherezade / process_ghosting
Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file
pe-injection pe-injector pefile
Language:C 597
PeNet
secana / PeNet
Portable Executable (PE) library written in .Net
imphash import-hash malware-analysis pe pe-header pefile portable-executable windows
Language:C# 560
hasherezade / transacted_hollowing
Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
code-injection malware pe-injector pefile
Language:C 489
hija / MalwareDataScience
Malware Data Science Reading Diary / Notes
data-science deep-learning machine-learning malware malware-analysis malwareanalysis pefile
Language:Jupyter Notebook 114
87owo / PYAS
Python Antivirus Software
antivirus hashlib pyqt5 python security tools scanner protect windows pefile simhash yara
Language:Python 107
0x00Jeff / BetterGetProcAddress
POC of a better implementation of GetProcAddress for ntdll using binary search
winapi getprocaddress binary-search peter peb pefile exports
Language:C 96
urwithajit9 / ClaMP
A Malware classifier dataset built with header fields’ values of Portable Executable files
machine-learning-dataset malware malware-analysis malware-dataset malware-research pefile peheader python malware-detection machine-learning-for-malware
Language:YARA 86
ins1gn1a / Frampton
PE Binary Shellcode Injector - Automated code cave discovery, shellcode injection, ASLR bypass, x86/x64 compatible
shellcode-injection cave-discovery exploit-kit backdoor pefile pe-injector
Language:Python 75
surajr / Machine-Learning-approach-for-Malware-Detection
A Machine Learning approach for classifying a file as Malicious or Legitimate
machine-learning malware-detection pefile security-scanner security-tools
Language:Jupyter Notebook 74
hasherezade / pe2pic
Small visualizator for PE files
malware-analysis pe-file pe-format pefile visualization
Language:Python 66
Hagrid29 / herpaderply_hollowing
Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping
code-injection malware pe-injector pe-loader pefile process-hollowing
Language:C 38
secana / CertDump
Dump certificates from PE files in different formats
certificate pkcs7 pefile portable-executable dump
Language:C# 35
cylance / PyPackerDetect
A malware dataset curation tool which helps identify packed samples.
malware packer pefile peid security
Language:Python 28
omarghader / pefile-go
Golang port of pefile
dll golang imphash pefile peid-signature
Language:Python 22
0xlane / process_ghosting
ProcessGhosting 技术的 rust 实现版本
pe-injection pe-injector pefile process-ghosting process-injection process-injector rust windows
Language:Rust 21
avdhoot0303 / Malware-detection-of-PE-files
This project is Malware detection API using ML and CNN techniques
malware-analysis convolutional-neural-networks machine-learning fastapi colabcode python pefile principal-component-analysis
Language:Jupyter Notebook 20
Antoine87 / pe.hsl
Hex Workshop editor's structure library for the Microsoft's Portable Executable format.
hex-editor hex-workshop hsl pe pefile coff windows winnt reverse-engineering
16
apriorit / portable-executable-library
PE Bliss - Cross-Platform Portable Executable C++ Library
pefile parser cross-platform
Language:C++ 16
DasariJayanth / Malware-Detection-in-PE-files-using-Machine-Learning
Detecting Malware in PE files
machine-learning python-3 pefile malware-analysis malware-detection hybridstaticanalysis staticanalysis ngrams opcodengrams bytengrams opcode asm byte dll exe peheader classifier-model
Language:Jupyter Notebook 16
malice-plugins / pescan
Malice PExecutable Plugin
malware plugin malice docker pe pe-executable executable pefile windows malice-plugin malware-analysis malware-research peid signature-verification
Language:Python 15
Kairos-T / Malware-Analysis-Toolkit
[IN THE WORKS] Python script designed to provide comprehensive analysis of malware samples, combining static and dynamic analysis techniques to analyse the behaviour and characteristics of analysed malware. Utilises PEfile library and PyREBox (VM sandbox)
malware malware-analysis pefile python pyrebox
Language:Python 11
keowu / pefixerextreme
My personal PE Fixer that allows you to patch a raw PE dump to a fully patched and working PE dump that will help your analysis.
dumprawfix gaming hacking malware-analysis pefile pefileheader reverse-engineering windows
Language:C++ 10
cloudtracer / pefile.pypy
Pypy.js compatible version of pefile.py for use in offline browser implementation
javascript pefile binary binary-analysis browser pypy
Language:Python 9
ReFo0 / process-dumper
process dumper
dump dumper pefile processdumper
Language:C 8
aj-tap / mr.roboto
Malware analysis scripts written in Python. Scripts include unpacking zip samples, string extraction, and query VT hashes of samples.
malware-analysis virustotal yara pefile python3
Language:Python 6
emr4h / Malware-Detection-Using-Machine-Learning
This project analyzes PE information of exe files to detect malware. In this repository you will learn how to create your own dataset and will be able to see the use of machine learning models using the dataset. We will use machine learning for detect malware.
malware-analysis malware-detection machine-learning pe portable-executable malware pefile classification dataset python random-forest
Language:Jupyter Notebook 6
secana / PEditor
View and edit Portable Exexutable (PE) files.
portable-executable malware-analysis pefile penet
Language:C# 6
JakePeralta7 / PE-Analyzer-GUI
This Program Analyzes PE Fies Using Python
python pe portable-executable pefile pysimplegui gui python3 malware-analysis pe-analyzer-gui
Language:Python 4
karust / mlmc
Binary classification of PE files using neural network
neural-network data-mining web-server python3 aiohttp-server pefile
Language:Python 3
lowleveldesign / importando
A command line tool to modify PE file imports on process start
pefile troubleshooting windows
Language:C# 3
0cherry / PackerIdentificator
packer identification tool using SVM
kernel-trick machine-learning ml pefile sequence-analysis similarity similarity-measures svm svm-classifier windows
Language:Python 2
87owo / PYAE
Python Antivirus Engine Scanner
beta pefile scanner security tools
Language:Python 2
CybercentreCanada / assemblyline-service-pefile
Assemblyline 4 PE File analysis service
assemblyline malware-analysis pe pefile
Language:Python 2
morgenm / unpadit
Tool for Removing Binary Padding from PEs
antivirus pefile
Language:Rust 2

pefile

petoolse / petools

unipacker / unipacker

hasherezade / process_ghosting

secana / PeNet

hasherezade / transacted_hollowing

hija / MalwareDataScience

87owo / PYAS

0x00Jeff / BetterGetProcAddress

urwithajit9 / ClaMP

ins1gn1a / Frampton

surajr / Machine-Learning-approach-for-Malware-Detection

hasherezade / pe2pic

Hagrid29 / herpaderply_hollowing

secana / CertDump

cylance / PyPackerDetect

omarghader / pefile-go

0xlane / process_ghosting

avdhoot0303 / Malware-detection-of-PE-files

Antoine87 / pe.hsl

apriorit / portable-executable-library

DasariJayanth / Malware-Detection-in-PE-files-using-Machine-Learning

malice-plugins / pescan

Kairos-T / Malware-Analysis-Toolkit

keowu / pefixerextreme

cloudtracer / pefile.pypy

ReFo0 / process-dumper

aj-tap / mr.roboto

emr4h / Malware-Detection-Using-Machine-Learning

secana / PEditor

JakePeralta7 / PE-Analyzer-GUI

karust / mlmc

lowleveldesign / importando

0cherry / PackerIdentificator

87owo / PYAE

CybercentreCanada / assemblyline-service-pefile

morgenm / unpadit