PE-bear is a multiplatform reversing tool for inspecting Windows Portable Executable files. It is designed to give malware analysts and reverse engineers a fast first view of a PE file’s structure. The tool can handle malformed PE files, which is important when analyzing packed, damaged, or intentionally manipulated binaries. It provides a graphical interface for exploring headers, sections, imports, resources, strings, and other PE internals. PE-bear also includes analysis conveniences such as hashes, signatures, and searchable string views. It is useful for security researchers who need a flexible PE inspection tool before moving into deeper disassembly or dynamic analysis.

Features

  • Portable Executable file inspection
  • Multiplatform reversing interface
  • Malformed PE file handling
  • Headers, sections, and imports view
  • String and resource analysis
  • Useful first-look malware triage

Project Samples

PE-bear Screenshot 1

Project Activity

See All Activity >

Categories

File Managers

License

GNU General Public License version 3.0 (GPLv3)

Follow PE-bear

PE-bear Web Site

Other Useful Business Software
Full-stack observability with actually useful AI | Grafana Cloud Icon
Full-stack observability with actually useful AI | Grafana Cloud

Our generous forever free tier includes the full platform, including the AI Assistant, for 3 users with 10k metrics, 50GB logs, and 50GB traces.

Built on open standards like Prometheus and OpenTelemetry, Grafana Cloud includes Kubernetes Monitoring, Application Observability, Incident Response, plus the AI-powered Grafana Assistant. Get started with our generous free tier today.
Create free account
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of PE-bear!

Additional Project Details

Operating Systems

Linux, Mac, Windows

Programming Language

C++

Related Categories

C++ File Managers

Registered

12 hours ago
Report inappropriate content