Repository navigation

#

pefile

petoolse / petools 

PE Tools - Portable executable (PE) manipulation toolkit

pefilehex-editordisassemblerentropyanalysisHackathon-Kitdumper
1131
8 年前
unipacker / unipacker 

Automatic and platform-independent unpacker for Windows binaries based on emulation

逆向工程unpackerpefileWindowsPython安全debuggerdumperemulation
Python
715
2 个月前
hasherezade / process_ghosting 

Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file

pe-injectorpe-injectionpefile
C
667
2 年前
secana / PeNet 

Portable Executable (PE) library written in .Net

pepefileportable-executableWindowsmalware-analysis
C#
624
2 个月前
hasherezade / transacted_hollowing 

Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging

pe-injectorcode-injectionMalwarepefile
C
565
2 年前
87owo / PYAS 

Antivirus software written in Python and C that blocks threats through deep learning and behavioral monitoring!

antivirusPython安全工具scannerprotectWindowspefileyaraKerasonnxCcnnKerneldriverTensorflowpyside6hash
Python
200
19 天前
hija / MalwareDataScience 

Malware Data Science Reading Diary / Notes

Malwaremalware-analysis数据科学深度学习pefilemalwareanalysis机器学习
Jupyter Notebook
129
6 年前
0x00Jeff / BetterGetProcAddress 

POC of a better implementation of GetProcAddress for ntdll using binary search

winapibinary-searchpefile
C
108
1 年前
urwithajit9 / ClaMP 

A Malware classifier dataset built with header fields’ values of Portable Executable files

Malwaremalware-analysismalware-researchpefilePythonmalware-detection
YARA
91
3 年前
ins1gn1a / Frampton 

PE Binary Shellcode Injector - Automated code cave discovery, shellcode injection, ASLR bypass, x86/x64 compatible

shellcode-injectionexploit-kitbackdoorpefilepe-injector
Python
77
6 年前
surajr / Machine-Learning-approach-for-Malware-Detection 

A Machine Learning approach for classifying a file as Malicious or Legitimate

机器学习malware-detectionsecurity-scanner安全pefile
Jupyter Notebook
75
9 年前
hasherezade / pe2pic 

Small visualizator for PE files

pe-filepe-formatpefilevisualizationmalware-analysis
Python
70
2 年前
Hagrid29 / herpaderply_hollowing 

Herpaderply Hollowing - a PE injection technique, hybrid between Process Hollowing and Process Herpaderping

code-injectionMalwarepe-injectorpe-loaderpefileprocess-hollowing
C
64
3 年前
secana / CertDump 

Dump certificates from PE files in different formats

certificatepefileportable-executabledump
C#
38
2 年前
cylance / PyPackerDetect 

A malware dataset curation tool which helps identify packed samples.

Malwarepacker安全pefile
Python
33
7 年前
DasariJayanth / Malware-Detection-in-PE-files-using-Machine-Learning 

Detecting Malware in PE files

机器学习Pythonpefilemalware-analysismalware-detectionngramsopcodeasmbytedllexe
Jupyter Notebook
26
2 年前
avdhoot0303 / Malware-detection-of-PE-files 

This project is Malware detection API using ML and CNN techniques

malware-analysisconvolutional-neural-networks机器学习FastAPIPythonpefileprincipal-component-analysis
Jupyter Notebook
25
2 年前
0xlane / process_ghosting 

ProcessGhosting 技术的 rust 实现版本

pe-injectionpe-injectorpefileprocess-injectionprocess-injectorRustWindows
Rust
25
1 年前
omarghader / pefile-go 

Golang port of pefile

pefileGodll
Python
23
8 年前
Antoine87 / pe.hsl 

Hex Workshop editor's structure library for the Microsoft's Portable Executable format.

hex-editorpepefilecoffWindows逆向工程
18
7 年前