A Python tool for creating adversarial PE files by applying mutations driven by camera-based entropy, with a feedback loop for evasion and steganographic logging.

DLLuminate: Illuminate the inner workings of Windows DLL files. A Python-powered analysis tool built on pefile that reveals exports, imports, and PE structure for developers and security researchers.

Warm greetings to ESET! x86-64 executable creation example

Implementation of the packing detection heuristic from the paper "Packed PE File Detection for Malware Forensics" of Han et al.

This project is a C++ application designed to search for a specified keyword within the sections of Portable Executable (PE) files located in a given directory.

Standard and DLL Manual Mapping

A utility to read a .net PE File

Packing detection tool for PE files

Dataset of packed PE samples

Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

Python implementation of the Packed Executable iDentifier (PEiD)

Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.

DWARF Explorer - a GUI utility for navigating the DWARF debug information