#

pe

Here are 164 public repositories matching this topic...

GeyserMC / Geyser

Sponsor

A bridge/proxy allowing you to connect to Minecraft: Java Edition servers with Minecraft: Bedrock Edition.

java minecraft translator bukkit spigot bungee proxy protocol velocity bedrock packet pe hacktoberfest bedrock-edition geyser java-edition geysermc bedrock-to-java

Updated May 6, 2022
Java

lief-project / LIEF

Open

lint: mypy type stubs for LIEF

6

fanquake commented Jan 4, 2022

I'm currently using LIEF in a project that uses mypy for Python type-checking. We use an ignore directive on our import lief #type:ignore statements, as type stubs for lief are not currently available. I've been considering generating and contributing stubs to https://github.com/python/typeshed, so that we can remove the ignores, and maybe others will find them useful. H

Read more

enhancement API Good First Issue

Open

PE: Possible invalid value for security_cookie

3

secretsquirrel / the-backdoor-factory

Sponsor

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

python capstone elf macho pe bdf file-infector

Updated Jul 31, 2021
Python

secretsquirrel / SigThief

Sponsor

Stealing Signatures and Making One Invalid Signature at a Time

python certificates python3 pe testing-antivirus

Updated Aug 11, 2021
Python

JusticeRage / Manalyze

A static analyzer for PE executables.

analysis malware static pe

Updated Apr 9, 2022
YARA

EgeBalci / amber

Reflective PE packer.

packer assembly stub shellcode pe amber payload crypter shellcode-loader

Updated Oct 27, 2021
Go

m4b / goblin

Open

Crash on malformed ELF file

11

Shnatsel commented Mar 5, 2019

Attempting to decode any of the attached files with goblin::elf::Elf::parse crashes the process. Memory allocator runs out of virtual memory and the process is aborted.

goblin-elf-oom-crashes.zip

Found via AFL.rs. Fuzzing harness: https://github.com/Shnatsel/goblin/blob/master/fuzz-afl/src/main.rs

Read more

good first issue

Open

Fuzz: Round 2

3

Open

Elf: NoteIterator has an infinite loop

6

Find more good first issues

t00sh / rop-tool

A tool to help you write binary exploits

arm exploit mips x86-64 x86 rop elf macho pe

Updated Feb 21, 2019
C

hasherezade / bearparser

Portable Executable parsing library (from PE-bear)

c-plus-plus parser-library multiplatform pe bearparser

Updated Feb 18, 2022
C++

XPEViewer

horsicq / XPEViewer

Sponsor

PE file viewer/editor for Windows, Linux and MacOS.

reverse-engineering disassembler pe pe-format portable-executable hacktoberfest windows-system hacktoberfest2021

Updated May 6, 2022
C++

aaaddress1 / RunPE-In-Memory

Run a Exe File (PE Module) in memory (like an Application Loader)

windows packer malware loader win32 pe runpe

Updated Mar 28, 2021
C++

mewmew / dissection

The dissection of a simple "hello world" ELF binary.

hello assembly hello-world elf binary-analysis pe disassembly dissection

Updated Dec 2, 2020
Assembly

PeNet

secana / PeNet

Sponsor

Portable Executable (PE) library written in .Net

windows pefile malware-analysis pe portable-executable imphash pe-header import-hash

Updated May 6, 2022
C#

Washi1337 / AsmResolver

Sponsor

A library for editing PE files with full .NET metadata support

framework native dotnet reverse-engineering disassembler writer reader msil cil pe portable-executable il metadata-editor pe-analyzer

Updated May 6, 2022
C#

alphaSeclab / windows-security

Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.

dll powershell uac pe applocker windows-defender amsi windows-security sysinternal

Updated Feb 20, 2020

GeyserMC / Floodgate

Sponsor

Hybrid mode plugin to allow for connections from Geyser to join online mode servers.

plugin java minecraft bukkit bungee velocity bedrock pe bedrock-edition geyser java-edition geysermc floodgate bedrock-to-java hacktoberfest2021

Updated Apr 2, 2022
Java

cyberark / DLLSpy

DLL Hijacking Detection Tool

dll permission pe privilege-escalation dll-hijacking

Updated Aug 6, 2019
C++

forrest-orr / moneta

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

windows ioc memory scanner malware injection process dump shellcode moneta pe artifact reflective usermode hollowing

Updated Feb 13, 2022
C++

Wenzel / checksec.py

Sponsor

Checksec tool in Python, Rich output. Based on LIEF

elf pe checksec

Updated Oct 20, 2021
Python

Antonin-Deniau / cave_miner

Search for code cave in all binaries

code cave mach-o elf kaitai-struct pe code-injection codecave kaitai

Updated Aug 29, 2019
Python

hasherezade / IAT_patcher

Persistent IAT hooking application - based on bearparser

multiplatform iat pe pe-format pe-file hooking iat-hooking bearparser

Updated Sep 2, 2021
C++

forrest-orr / artifacts-kit

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

generator dll kit header malware forensics shellcode pe mirroring wiping artifact hollowing phtnaom moating

Updated Aug 4, 2020
C++

can1357 / linux-pe

COFF and Portable Executable format described using standard C++ with no dependencies.

windows pe portable-executable coff

Updated Jan 11, 2022
C++

czs108 / PE-Packer

🗜️ A packer for Windows x86 executable files written in C and Intel x86 Assembly. The new file after packing can obstruct reverse engineering.

windows security reverse-engineering pe

Updated Mar 11, 2022
C

sashs / filebytes

Library to read and edit files in the following formats: Executable and Linking Format (ELF), Portable Executable (PE), MachO and OAT (Android Runtime)

python pe32 mach-o elf pe oat

Updated Feb 9, 2020
Python

wolfram77web / app-peid

PEiD detects most common packers, cryptors and compilers for PE files.

reverse-engineering pe disassembly

Updated Apr 10, 2017
HTML

saferwall / pe

A ⚡ lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

parsing malware malware-analysis pe portable-executable pe-file coff pe-parse pe-malformations

Updated Apr 14, 2022
Go

EntySec / HatVenom

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

exploit binary malware executable exploits shellcode elf binary-exploitation macho pe payload payloads exe architectures shellcodes shellcode-injection entysec

Updated May 6, 2022
Python

obscuritylabs / PeFixup

PE File Blessing - To continue or not to continue

pe exe security-tools

Updated Nov 23, 2019
Python

polycone / pe-loader

A Windows PE format file loader

windows loader executable internals pe

Updated Jun 1, 2018
C++

Improve this page

Add a description, image, and links to the pe topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the pe topic, visit your repo's landing page and select "manage topics."