From 81bf83b646b0b388d6418112791ebf1bc787c352 Mon Sep 17 00:00:00 2001 From: Ero Carrera Date: Fri, 26 May 2017 17:27:48 +0200 Subject: [PATCH] Synced README and README.md --- README | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/README b/README index e78a586..c3f633e 100644 --- a/README +++ b/README @@ -35,7 +35,8 @@ Prompted by the move to GitHub, the need to support Python 3 in addition to reso ## Projects and products using _pefile_ - * [Exe Dump Utility](http://utilitymill.com/utility/Exe_Dump_Utility) a web-based _pefile_ + * [MAEC](http://maec.mitre.org) MAEC is a standardized language for encoding and communicating high-fidelity information about malware based upon attributes such as behaviors, artifacts, and attack patterns. MAEC [converts](https://github.com/MAECProject/pefile-to-maec) _pefile_'s output into their XML format. + * [Qiew](https://github.com/mtivadar/qiew) Qiew - Hex/File format viewer. * [VirusTotal](http://www.virustotal.com/) * [bbfreeze](http://pypi.python.org/pypi/bbfreeze) * **pyemu**: [download](https://www.openrce.org/repositories/browse/codypierce), [whitepaper](https://www.blackhat.com/presentations/bh-usa-07/Pierce/Whitepaper/bh-usa-07-pierce-WP.pdf) @@ -54,6 +55,7 @@ PDFs of posters depicting the PE file format: The following links provide detailed information about the PE format and its structures. * [corkami's wiki page about the PE format](https://code.google.com/p/corkami/wiki/PE) has grown to be one of the most in-depth repositories of information about the PE format + * [corkami's treasure trove of PE weirdness](https://github.com/corkami/pocs/tree/master/PE) * [An In-Depth Look into the Win32 Portable Executable File Format](http://msdn.microsoft.com/msdnmag/issues/02/02/PE/default.aspx) * [An In-Depth Look into the Win32 Portable Executable File Format, Part 2](http://msdn.microsoft.com/msdnmag/issues/02/03/PE2/default.aspx) * [The Portable Executable File Format](http://www.csn.ul.ie/~caolan/publink/winresdump/winresdump/doc/pefile.html)