machofile
bintropy
| machofile | bintropy | |
|---|---|---|
| 1 | 1 | |
| 46 | 38 | |
| - | - | |
| 6.7 | 6.7 | |
| 4 months ago | 3 months ago | |
| Python | Python | |
| MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
machofile
bintropy
-
Collection of tools for executable packing detection
Bintropy: Entropy-based packing detection featuring multiple modes (whole binary, per section or segment). Based on the awesome LIEF library, therefore supports ELF, PE, Mach-O.
What are some alternatives?
pyhidra - Pyhidra is a Python library that provides direct access to the Ghidra API within a native CPython interpreter using jpype.
LIEF - LIEF - Library to Instrument Executable Formats
peid - Python implementation of the Packed Executable iDentifier (PEiD)
yarGen - yarGen is a generator for YARA rules
pypackerdetect - Packing detection tool for PE files
pyWhat - 🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
avatar2 - Python core of avatar²
malboxes - Builds malware analysis Windows VMs so that you don't have to.
ennemi - Easy Nearest Neighbor Estimation of Mutual Information
pyc2bytecode - A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
docker-packing-box - Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection