This script analyzes MZ-PE (MS-DOS) executable.
Project description
Program Executable Analyzer
Description
This script analyzes MZ-PE (MS-DOS) executable file.
This tool is useful for malware analysis or debug/understand compiled dependencies.
- Analyze DLLs and imported functions name
- Analyze exported functions name
- Get executable filename at the compiled time
- Get encodings and languages used for compilation
- Get timestamps saved in executable
- Get architecture, system version, resources (Version file, Manifest)
- Get company name, product name, product version, copyright
- Sections sizes and addresses
Requirements
- python3
- Python 3 Standard library
Installation
git clone https://github.com/mauricelambert/ProgramExecutableAnalyzer.git
Usages
python3 ProgramExecutableAnalyzer.py -h
python3 ProgramExecutableAnalyzer.py executable.exe
python3 ProgramExecutableAnalyzer.py -c executable.exe # No color
python3 ProgramExecutableAnalyzer.py -v executable.exe # Verbose mode
Screenshots
Links
Licence
Licensed under the GPL, version 3.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Close
Hashes for ProgramExecutableAnalyzer-0.0.2.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 2c3dc4a60dbfa637364c382319a41b778b6cf4909fec3ce65abf5dc058832b75 |
|
MD5 | 4a978a7d3413d68bc6f68f45f49e07ee |
|
BLAKE2b-256 | 8e81259ec48a9d916086cb2f3e02e2429936aaf1b3bfd6a811f80099e8ce77e5 |