flat assembler
Message board for the users of flat assembler.

Index > Projects and Ideas > writing a PE packer

Author
Thread Post new topic Reply to topic
int0x50



Joined: 19 Jul 2019
Posts: 54
int0x50 05 Jul 2023, 12:21
i am writing a file packer (very basic one) .. to understand PE and binary files ...
till now i have finished PE header analysis and hex print ...

any tricks, tips, reading, ideas you could share, please do ...


Description:
Filesize: 320.91 KB
Viewed: 1717 Time(s)

3.JPG


Description:
Filesize: 211.94 KB
Viewed: 1717 Time(s)

2.JPG


Description:
Filesize: 202.35 KB
Viewed: 1717 Time(s)

1.JPG


Post 05 Jul 2023, 12:21
View user's profile Send private message Reply with quote
macomics



Joined: 26 Jan 2021
Posts: 926
Location: Russia
macomics 05 Jul 2023, 12:35
Look at this and try something similar. This is certainly not a packer, but there are descriptions of the PE header structures.
Post 05 Jul 2023, 12:35
View user's profile Send private message Reply with quote
int0x50



Joined: 19 Jul 2019
Posts: 54
int0x50 12 Jul 2023, 16:02
it's getting into like a full fledged PE header parser and printer ... added PE32+ (pe64) parsing as well .. more features added ...

code hosted at: https://github.com/vlabsc/parse_pe
Post 12 Jul 2023, 16:02
View user's profile Send private message Reply with quote
int0x50



Joined: 19 Jul 2019
Posts: 54
int0x50 01 Aug 2023, 10:54
pe64 feature added ... it also parses import table, and prints import name table ...

https://github.com/vlabsc/parse_pe/
Post 01 Aug 2023, 10:54
View user's profile Send private message Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  


< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Copyright © 1999-2024, Tomasz Grysztar. Also on GitHub, YouTube.

Website powered by rwasa.