This module parses and analyzes ELF file for Forensic and investigations.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for MauriceLambert from gravatar.com MauriceLambert

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GPL-3.0 License)
  • Author: Maurice Lambert
  • Maintainer: Maurice Lambert
  • Tags forensic, investigations, ELF, analysis, ELF-parser, ELF-analyzer
  • Requires: Python >=3.8
Classifiers

Project description

ElfAnalyzer

Description

This module parses and analyzes ELF file for Forensic and investigations.

Parses:

  • ELF identification
  • ELF headers
  • Program headers
  • ELF sections
  • ELF symbols tables
  • Comment section
  • Note sections
  • Dynamic section

Requirements

This package require:

  • python3
  • python3 Standard Library

Optional

  • matplotlib
  • EntropyAnalysis

Matplotlib and EntropyAnalysis are not installed by ProgramExecutableAnalyzer because this package can be installed on server without GUI. You can install optinal required packages with the following command: python3 -m pip install matplotlib EntropyAnalysis

Installation

python3 -m pip install ElfAnalyzer

git clone "https://github.com/mauricelambert/ElfAnalyzer.git"
cd "ElfAnalyzer"
python3 -m pip install .

Usages

Command line

ElfAnalyzer              # Using CLI package executable
python3 -m ElfAnalyzer   # Using python module
python3 ElfAnalyzer.pyz  # Using python executable
ElfAnalyzer.exe          # Using python Windows executable

./ElfAnalyzer.pyz ./local/ElfFile
ElfAnalyzer.exe -u https://github.com/mauricelambert/FastRC4/releases/download/v0.0.1/librc4.so
./ElfAnalyzer.pyz -v ./local/ElfFile
python3 ElfAnalyzer.pyz -c ./local/ElfFile

Python script

from ElfAnalyzer import *

file = open("./local/ElfFile", "rb")
elfindent, elf_headers, programs_headers, elf_sections, symbols_tables, comments, note_sections, notes, dynamics, sections = parse_elffile(file)
cli(elfindent, elf_headers, programs_headers, elf_sections, symbols_tables, comments, notes, dynamics, sections)
file.close()

Links

License

Licensed under the GPL, version 3.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for MauriceLambert from gravatar.com MauriceLambert

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GPL-3.0 License)
  • Author: Maurice Lambert
  • Maintainer: Maurice Lambert
  • Tags forensic, investigations, ELF, analysis, ELF-parser, ELF-analyzer
  • Requires: Python >=3.8
Classifiers

Release history Release notifications | RSS feed

This version

0.0.3

0.0.2

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

ElfAnalyzer-0.0.3.tar.gz (30.3 kB view details)

Uploaded Source

File details

Details for the file ElfAnalyzer-0.0.3.tar.gz.

File metadata

  • Download URL: ElfAnalyzer-0.0.3.tar.gz
  • Upload date:
  • Size: 30.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.11.4

File hashes

Hashes for ElfAnalyzer-0.0.3.tar.gz
Algorithm Hash digest
SHA256 4a88b01d0f311b0b8b3ed0d19cc3fee2c2ae0a720699c275f1a7678a1fbfef9d
MD5 fc197c69307aa25b926288841ecf2ef4
BLAKE2b-256 b1826f2d33c9406588bb0617352862f25f80a8ddc1f0347013d7e5d700295324

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page