readpe

readpe (formerly known as pev) is a multiplatform toolkit to work with PE (Portable Executable) binaries. Its main goal is to provide feature-rich tools for properly analyze binaries with a strong focus on suspicious ones.

Features

Based on own PE library, called libpe
Support for PE32 and PE32+ (64-bit) files
Formatted output in text, CSV, HTML, and XML
pesec: check security features in PE files, extract certificates, and more
readpe: parse PE headers, sections, imports and exports
pescan: detect TLS callback functions, DOS stub modification, suspicious sections and more
pedis: disassembly a PE file section or function with support for Intel and AT&T syntax
Include tools to convert RVA from file offset and vice-versa
pehash: calculate PE file hashes including imphash and ssdeep
pepack: detect whether an executable is packed or not
pestr: search for hardcoded Unicode and ASCII strings simultaneously in PE files
peres: show and extract PE file resources

Project Samples

readpe: retrieving PE/COFF Optional Header

pedis disassemblying the DOS stud and readpe getting PE imports

Project Activity

See All Activity >

License

GNU General Public License version 2.0 (GPLv2)

Follow readpe

readpe Web Site

User Ratings

3.0 out of 5 stars

★★★★★

★★★★

★★★

★★

★

ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

User Reviews

Filter Reviews:

All

noteworthy Posted 2014-04-04

Just OK.

Additional Project Details

Intended Audience

Developers, Auditors, Security Professionals

User Interface

Command-line

Programming Language

Related Categories

C Security Software, C Software Development Software, C Anti-Malware Software

Registered

2011-03-25

Similar Business Software

Miradore MDM

Miradore is a cloud-based Mobile Device Management (MDM) platform that was acquired by GoTo in 2022. Miradore provides a smarter way to securely manage both company-owned and personal Android, iOS, macOS, and Windows devices. GoTo (Miradore) has been recognized as a Leader in the IDC...

See Software
Uptrends

Uptrends is the ultimate monitoring tool to stay in control of the uptime, performance, and functionality of your websites, APIs, and servers. It is all about cloud-based website performance and network monitoring. Uptrends' products provides a 24/7 monitoring service that alerts and fix...

See Software
Heimdal Endpoint Detection and Response (EDR)

Heimdal® Endpoint Detection and Response is our proprietary multi-solution service providing unique prevention, threat-hunting, and remediation capabilities. It combines some of the most advanced threat-hunting technologies: - Next-Gen Antivirus - Privileged Access Management - Application...

See Software