readpe

readpe (formerly known as pev) is a multiplatform toolkit to work with PE (Portable Executable) binaries. Its main goal is to provide feature-rich tools for properly analyze binaries with a strong focus on suspicious ones.

Features

Based on own PE library, called libpe
Support for PE32 and PE32+ (64-bit) files
Formatted output in text, CSV, HTML, and XML
pesec: check security features in PE files, extract certificates, and more
readpe: parse PE headers, sections, imports and exports
pescan: detect TLS callback functions, DOS stub modification, suspicious sections and more
pedis: disassembly a PE file section or function with support for Intel and AT&T syntax
Include tools to convert RVA from file offset and vice-versa
pehash: calculate PE file hashes including imphash and ssdeep
pepack: detect whether an executable is packed or not
pestr: search for hardcoded Unicode and ASCII strings simultaneously in PE files
peres: show and extract PE file resources

Project Samples

readpe: retrieving PE/COFF Optional Header

pedis disassemblying the DOS stud and readpe getting PE imports

Project Activity

See All Activity >

License

GNU General Public License version 2.0 (GPLv2)

Follow readpe

readpe Web Site

Other Useful Business Software

Our Free Plans just got better! | Auth0

With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.

Try free now

Rate This Project

User Ratings

3.0 out of 5 stars

★★★★★

★★★★

★★★

★★

★

ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

User Reviews

Filter Reviews:

All

noteworthy Posted 2014-04-04

Just OK.

Additional Project Details

Intended Audience

Developers, Auditors, Security Professionals

User Interface

Command-line

Programming Language

Related Categories

C Security Software, C Software Development Software, C Anti-Malware Software

Registered

2011-03-25

Similar Business Software

LogMeIn Miradore

Miradore is a cloud-based Mobile Device Management (MDM) platform that was acquired by GoTo in 2022. Miradore provides a smarter way to securely manage both company-owned and personal Android, iOS, macOS, and Windows devices. GoTo (Miradore) has been recognized as a Leader in the IDC...

See Software
AdRem NetCrunch

NetCrunch is a powerful, scalable, all-in-one network monitoring system built for modern IT environments. It supports agentless monitoring of thousands of devices, covering SNMP, servers, virtualization (VMware, Hyper-V), cloud (AWS, Azure, GCP), traffic flows (NetFlow, sFlow), logs, and custom...

See Software
Heimdal Endpoint Detection and Response (EDR)

Heimdal® Endpoint Detection and Response is our proprietary multi-solution service providing unique prevention, threat-hunting, and remediation capabilities. It combines some of the most advanced threat-hunting technologies: - Next-Gen Antivirus - Privileged Access Management - Application...

See Software