pe-parse
pe-parse copied to clipboard
trailofbits
Principled, lightweight C/C++ PE parser
Our build matrix is unnecessarily wide, which slows down each CI run (since separate VMs have to be spawned for each instance): ```yaml pe-parse: strategy: matrix: platform: ["ubuntu-18.04", "macos-latest"] build-type:...
We should do this once the new year rolls around.
Seems to be an error parsing invalid Unicode resource ids in [parse_resource_id](https://github.com/trailofbits/pe-parse/blob/master/pe-parser-library/src/parse.cpp#L637) function. Here is a sample file that triggers the error. [invalid-utf16-rsid.exe.zip](https://github.com/trailofbits/pe-parse/files/6771384/invalid-utf16-rsid.exe.zip). Parse of sample file with dump-pe: ```...
Compiling with warnings-as-errors is fine if your compiler doesn't change, but as new compilers are released, new warnings might pop up and fail a compilation for an end-user. The user...
Env:Windows10、vistual studio 2017、cmake version 3.19.4 Error info: Determining if the include file filesystem exists failed with the following output: Change Dir: D:/FoxitGit/pe-parse/build/CMakeFiles/CMakeTmp Run Build Command(s):D:/vs2017/MSBuild/15.0/Bin/MSBuild.exe cmTC_7d71c.vcxproj /p:Configuration=Debug /p:Platform=Win32 /p:VisualStudioVersion=15.0 /v:m...
Within #145, there are very simple tests to detect whether pe-parse would correctly identify the executables as PE, without erroring. Unfortunately (but not unexpectedly), there are a few executables that...
## First Thanks for your good library for parsing PE files. We use your library for extract dependencies of executable application on [CQtDeployer](https://github.com/QuasarApp/CQtDeployer) project. ## Trouble Windows use the delay-loaded...
pe-parse has had Rich header support for a while now, but that hasn't been ported into pepy. An interface like this would be good (and consistent with the others): ```python...
Parse the DIR_COM_DESCRIPTOR directory. It is also known as the .NET directory: http://www.ntcore.com/files/dotnetformat.htm
We should add a high-level iter-style API for the debug data directory entry vector, similar to the other iter-style APIs. One challenge: the contents of the debug entries are heterogeneously...