pev Icon

pev

the PE file analysis toolkit

4.0 Stars (2)
96 Downloads (This Week)
Last Update:
Download pev-0.70-win32.zip
Browse All Files

Screenshots

Description

pev is a multiplatform toolkit to work with PE (Portable Executable) binaries. Its main goal is to provide feature-rich tools for proper analyze binaries, specially the suspicious ones.

pev Web Site

Features

  • Based on own PE library, called libpe
  • Support for PE32 and PE32+ (64-bit) files
  • Formatted output in text and CSV (other formats in development)
  • pesec: check security features in PE files, extract certificates and more
  • readpe: parse PE headers, sections, imports and exports
  • pescan: detect TLS callback functions, DOS stub modification, suspicious sections and more
  • pedis: disassembly a PE file section or function with support for Intel and AT&T syntax
  • Include tools to convert RVA from file offset and vice-versa
  • pehash: calculate PE file hashes
  • pepack: detect if an executable is packed or not
  • pestr: search for hardcoded Unicode and ASCII strings simultaneously in PE files
  • peres: show and extract PE file resources

Update Notifications





User Ratings

★★★★★
★★★★
★★★
★★
1
0
1
0
0
ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5
features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5
design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5
support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5
Write a Review

User Reviews

  • noteworthy
    1 of 5 2 of 5 3 of 5 4 of 5 5 of 5

    Just OK.

    Posted 04/04/2014
  • gavinchase
    1 of 5 2 of 5 3 of 5 4 of 5 5 of 5

    Runs smoothly

    Posted 12/27/2012
Read more reviews

Additional Project Details

Intended Audience

Developers, Security Professionals

User Interface

Command-line

Programming Language

C

Registered

2011-03-24
Screenshots can attract more users to your project.
Features can attract more users to your project.

Icons must be PNG, GIF, or JPEG and less than 1 MiB in size. They will be displayed as 48x48 images.