penalyze2 PE executable analyzer - Summary
This group is not part of the GNU Project.
penalyze2 is a malware analyzation tool that is developed and runs on GNU/Linux. It analyzes Windows (PE) executable files by emulating both an x86 processor and a Windows enviroment.
The goal of this project is to come up with a Free Software solution for malware analysts. It will be able to circumvent executable packers/encrypters by simply emulating their unpacking/uncrypting code. Additionally it will give its user detailed information about what the program is doing to the system by displaying all library (and hence kernel) calls that are made.
The current development sourcecode can be downloaded via CVS, click <a href="https://savannah.nongnu.org/cvs/?group=penalyze2">here</a> for more information.
There are also two mailing lists, namely penalyze2-commit at nongnu.org, being the place where CVS commit notifications go to, and penalyze2-discussion at nongnu.org, a general development discussion list.
Registration Date: Thu 03 Aug 2006 12:24:40 PM UTC
License: GNU General Public License v2 or later
Development Status: 3 - Alpha
posted by sp, Sun 29 Oct 2006 07:45:22 PM UTC
Due to time problems and the lack of need for this tool (both personally and also community-wise) I'm putting this project on 'hold' for now.
However, in it's current version penalyze2 should at least work as a proof of concept. If someone is willing to pick this project up, please let me know.
- Browse open items
Submit a new item
- Browse open items
Submit a new item
Powered by Savane 3.14-79a4.
Corresponding source code