Skip to content
/ zango_pe Public

Reading and editing PE information for fun and profit (and in pure python). You're welcome.

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

zangobot/zango_pe

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
lief_test.py
lief_test.py
 
 
mismatch.py
mismatch.py
 
 
requirements.txt
requirements.txt
 
 
zangope.py
zangope.py
 
 

Repository files navigation

ZangoPE

Another library for parsing PE information. To load a PE, just run:

from zangope import Binary
calc = Binary.load_from_path("calc.exe")

Manipulations of PE file format:

  • Add new section ✅
  • Extend DOS header ✅
  • Inject content between sections ✅
  • Remove ASLR loading ✅
  • Make .text section writeable ✅
  • Simple NT system call (NTWriteFile) before calling regular program ✅
  • Injection of more NT system calls 🚧

About

Reading and editing PE information for fun and profit (and in pure python). You're welcome.

Topics

windows reverse-engineering pefileheader

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages