readpe

readpe (formerly known as pev) is a multiplatform toolkit to work with PE (Portable Executable) binaries. Its main goal is to provide feature-rich tools for properly analyze binaries with a strong focus on suspicious ones.

Features

Based on own PE library, called libpe
Support for PE32 and PE32+ (64-bit) files
Formatted output in text, CSV, HTML, and XML
pesec: check security features in PE files, extract certificates, and more
readpe: parse PE headers, sections, imports and exports
pescan: detect TLS callback functions, DOS stub modification, suspicious sections and more
pedis: disassembly a PE file section or function with support for Intel and AT&T syntax
Include tools to convert RVA from file offset and vice-versa
pehash: calculate PE file hashes including imphash and ssdeep
pepack: detect whether an executable is packed or not
pestr: search for hardcoded Unicode and ASCII strings simultaneously in PE files
peres: show and extract PE file resources

Project Samples

readpe: retrieving PE/COFF Optional Header

pedis disassemblying the DOS stud and readpe getting PE imports

Project Activity

See All Activity >

License

GNU General Public License version 2.0 (GPLv2)

Follow readpe

readpe Web Site

User Ratings

3.0 out of 5 stars

★★★★★

★★★★

★★★

★★

★

ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 3 / 5

User Reviews

Filter Reviews:

All

noteworthy Posted 2014-04-04

Just OK.

Additional Project Details

Intended Audience

Auditors, Developers, Security Professionals

User Interface

Command-line

Programming Language

Related Categories

C Security Software, C Software Development Software, C Anti-Malware Software

Registered

2011-03-25

Similar Business Software

AdRem NetCrunch

NetCrunch is a powerful, scalable, all-in-one network monitoring system built for modern IT environments. It supports agentless monitoring of thousands of devices, covering SNMP, servers, virtualization (VMware, Hyper-V), cloud (AWS, Azure, GCP), traffic flows (NetFlow, sFlow), logs, and custom...

See Software
Ninox

Ninox is your solution for organizing and managing complex data in a structured and efficient way. With its highly flexible user interface, you can analyze, process, and evaluate any type of data. Additionally, the Ninox API enables seamless integration with services like Google for enhanced...

See Software
Atera

Atera, the first and only Agentic AI platform for IT management, offers IT teams and MSPs a digital workforce of AI agents to preemptively and autonomously manage their entire IT operations. Its all-in-one platform combines RMM, helpdesk, ticketing, and automation to reduce downtime, improve...

See Software
Resco Mobile App Development Toolkit

A no-code platform designed for creating mobile business applications tailored to Microsoft Dynamics 365, Power Platform, Business Central, and Salesforce. This toolkit empowers you to build white-labeled, scalable apps optimized for industries such as utilities, energy, construction, and field...

See Software
Frontegg

Frontegg is a Customer Identity and Access Management (CIAM) platform that simplifies authentication, authorization, and user management for SaaS companies. It enables developers to implement advanced identity features quickly, then shift ongoing administration to other teams. With Frontegg,...

See Software
Uptrends

ITRS Uptrends helps organizations achieve 24x7 reliability and performance for web services (websites, SaaS, APIs), so mission-critical transactions work from anywhere, anytime. ITRS Uptrends’ intuitive no-code/low-code transaction recorder simplifies the monitoring setup, driving rapid...

See Software