secana / PeNet

Portable Executable (PE) library written in .Net
Apache License 2.0
594 stars 113 forks source link
imphash import-hash malware-analysis pe pe-header pefile portable-executable windows

license NuGet NuGet Build Test BuiltWithDot.Net shield

PeNet Logo PeNet is a parser for Windows Portable Executable headers. It completely written in C# and does not rely on any native Windows APIs. Furthermore it supports the creation of Import Hashes (ImpHash), which is a feature often used in malware analysis. You can extract Certificate Revocation List, compute different hash sums and other useful stuff for working with PE files.

Getting Started & API Reference

The API reference can be found here: PeNet Documentation & API Reference.

For an overview of PeNet or to analyze PE files go to: penet.io

Continuous Integration

The project is automatically build, tested and released with an Azure Pipeline.

To release a new version, push a tagged commit. For example:

 git tag -a v2.0.0 -m 'Release version 2.0.0'
 git push origin v2.0.0