docker-packing-box VS LIEF

Compare docker-packing-box vs LIEF and see what are their differences.

docker-packing-box

Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection (by packing-box)
docker-image executable-packing malware-packers research-platform pe-format elf-format Machine Learning dataset-generation packing-detection malware-analysis malware-research binary-analysis research-tools
Source Code
Suggest alternative
Edit details

LIEF

LIEF - Library to Instrument Executable Formats (by lief-project)
Reverse Engineering malware-analysis binary-analysis Parser modification executable-formats elf macho pe lief Parsing SDK Python Android Dex oat Art vdex
Source Code
lief-project.github.io
Suggest alternative
Edit details
WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors
docker-packing-box LIEF
1 4
42 4,145
- 2.3%
9.4 9.3
3 days ago 2 days ago
Python C++
GNU General Public License v3.0 only Apache License 2.0
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

docker-packing-box

Posts with mentions or reviews of docker-packing-box. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-01-15.

LIEF

Posts with mentions or reviews of LIEF. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-07-26.
  • What's the Most Portable Way to Include Binary Blobs in an Executable?
    5 projects | news.ycombinator.com | 26 Jul 2022
    My team is working on this problem in the context of creating Node.js single-executable applications. While the naive approach of just appending data at the end of the binary works, it is not friendly with code-signature in macOS and Windows given that signing operates on PE and Mach-O sections.

    We have recently open-sourced a small tool called Postject (https://github.com/postmanlabs/postject), which is able to inject arbitrary data as proper ELF/Mach-O/PE sections for all major operating systems (with AIX support coming). The tool also provides C/C++ cross-platform headers for easily traversing the final binary and introspect whether the segment is present or not.

    The tool is based on the LIEF (https://github.com/lief-project/LIEF) project.

    At Postman, we are making use of this on our custom Node.js single-executable applications and soon on our custom Electron.js builds too.

  • Pefile python module features
    2 projects | /r/Malware | 17 Mar 2022
    https://github.com/lief-project/LIEF https://lief-project.github.io/doc/latest/api/python/index.html
  • Collection of tools for executable packing detection
    6 projects | /r/Malware | 15 Jan 2022
    Bintropy: Entropy-based packing detection featuring multiple modes (whole binary, per section or segment). Based on the awesome LIEF library, therefore supports ELF, PE, Mach-O.
  • rabin2 for scraping ELF to JSON
    2 projects | /r/ELFLinking | 16 Oct 2021
    I've been looking at LIEF toolkit for similar purposes (https://github.com/lief-project/LIEF). It's a python framework for cross platform binary analysis. I'm curious, does rabin2 support dll format?

What are some alternatives?

When comparing docker-packing-box and LIEF you can also consider the following projects:

windbg-code-tracing - Pykd script to perform simple code tracing and so inspecting control flow executed (CFE).

dll-proxy-generator - Creates a proxy dll which sits between the game and original dll

bintropy - Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

radare2 - UNIX-like reverse engineering framework and command-line toolset

tree-sitter-html - HTML grammar for Tree-sitter

pe - A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations.

vivaldi_modding - Custom modifications for Vivaldi web browser.

goblin - An impish, cross-platform binary parsing crate, written in Rust

the-backdoor-factory - Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

XAPKDetector - APK/DEX detector for Windows, Linux and MacOS.

PyPackerDetect - A malware dataset curation tool which helps identify packed samples.

docker-packing-box vs windbg-code-tracing LIEF vs dll-proxy-generator docker-packing-box vs bintropy LIEF vs radare2 LIEF vs tree-sitter-html LIEF vs pe LIEF vs vivaldi_modding LIEF vs bintropy LIEF vs goblin LIEF vs the-backdoor-factory LIEF vs XAPKDetector LIEF vs PyPackerDetect