pe
pe copied to clipboard
saferwall
A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.
This PR fixes issues triggered by fuzzing (incomplete)
Is there a way using this package to extract multiple certificate chains that are present in a PE file? I am currently looking at a PE file that has multiple...
How to get the certificate signature time of the pe file???
https://learn.microsoft.com/en-us/windows/win32/menurc/versioninfo-resource
This will help on cases where someone has chosen explicitly a fast-load option, then later tried to parse a directory that depended on another directory.
Hi, I'm so happy I've found this package/library! Great work. I'm planning to sunset the [PE](https://github.com/rabbitstack/fibratus/tree/master/pkg/pe) introspection functionality I've initially built into Fibratus in favour of your package. I was...
Add support for parsing (and returning) additional nested signatures. Also fixes an issue where the signature algorithm of the file was detected incorrectly.
