pyew_2.0-3_all.deb


Advertisement

Description

pyew - Python tool like radare or *iew for malware analysis

Distribution: Ubuntu 16.04 LTS (Xenial Xerus)
Repository: Ubuntu Universe amd64
Package name: pyew
Package version: 2.0
Package release: 3
Package architecture: all
Package type: deb
Installed size: 1.83 KB
Download size: 318.99 KB
Official Mirror: archive.ubuntu.com
Pyew is a (command line) Python tool like radare and *iew, oriented, mainly, to analyze malware. It does have support for hexadecimal viewing, disassembly (Intel 16, 32 and 64 bits), PE and ELF file formats (it does code analysis the right way), following direct call/jmp instructions, OLE2 format, PDF format (limited) and more. It also supports plugins to add more features to the tool.

Alternatives

    Download

    Binary package: pyew_2.0-3_all.deb
    Source package: pyew

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install pyew deb package:
      # sudo apt-get install pyew

    Files

    • /usr/bin/pyew
    • /usr/lib/python2.7/dist-packages/pyew/__init__.py
    • /usr/lib/python2.7/dist-packages/pyew/batch_antidebug.py
    • /usr/lib/python2.7/dist-packages/pyew/batch_example.py
    • /usr/lib/python2.7/dist-packages/pyew/config.py
    • /usr/lib/python2.7/dist-packages/pyew/gcluster.py
    • /usr/lib/python2.7/dist-packages/pyew/pdf_example.py
    • /usr/lib/python2.7/dist-packages/pyew/pefile.py
    • /usr/lib/python2.7/dist-packages/pyew/peutils.py
    • /usr/lib/python2.7/dist-packages/pyew/pydistorm.py
    • /usr/lib/python2.7/dist-packages/pyew/pyew.py
    • /usr/lib/python2.7/dist-packages/pyew/pyew_core.py
    • /usr/lib/python2.7/dist-packages/pyew/safer_pickle.py
    • /usr/lib/python2.7/dist-packages/pyew/Elf/__init__.py
    • /usr/lib/python2.7/dist-packages/pyew/Elf/elf_lookup.py
    • /usr/lib/python2.7/dist-packages/pyew/anal/__init__.py
    • /usr/lib/python2.7/dist-packages/pyew/anal/x86analyzer.py
    • /usr/lib/python2.7/dist-packages/pyew/contrib/scripting.txt
    • /usr/lib/python2.7/dist-packages/pyew/plugins/OleFileIO_PL.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/UserDB.TXT
    • /usr/lib/python2.7/dist-packages/pyew/plugins/__init__.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/diagrams.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/easygui.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/graphs.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/ole2.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/packer.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/pdf.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/pdfid_PL.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/shellcode.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/threatexpert.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/url.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/virustotal.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/vmdetect.py
    • /usr/lib/python2.7/dist-packages/pyew/plugins/xdot.py
    • /usr/share/doc/pyew/changelog.Debian.gz
    • /usr/share/doc/pyew/copyright
    • /usr/share/pyshared/pyew/__init__.py
    • /usr/share/pyshared/pyew/batch_antidebug.py
    • /usr/share/pyshared/pyew/batch_example.py
    • /usr/share/pyshared/pyew/config.py
    • /usr/share/pyshared/pyew/gcluster.py
    • /usr/share/pyshared/pyew/pdf_example.py
    • /usr/share/pyshared/pyew/pefile.py
    • /usr/share/pyshared/pyew/peutils.py
    • /usr/share/pyshared/pyew/pydistorm.py
    • /usr/share/pyshared/pyew/pyew.py
    • /usr/share/pyshared/pyew/pyew_core.py
    • /usr/share/pyshared/pyew/safer_pickle.py
    • /usr/share/pyshared/pyew/Elf/__init__.py
    • /usr/share/pyshared/pyew/Elf/elf_lookup.py
    • /usr/share/pyshared/pyew/anal/__init__.py
    • /usr/share/pyshared/pyew/anal/x86analyzer.py
    • /usr/share/pyshared/pyew/contrib/scripting.txt
    • /usr/share/pyshared/pyew/plugins/OleFileIO_PL.py
    • /usr/share/pyshared/pyew/plugins/UserDB.TXT
    • /usr/share/pyshared/pyew/plugins/__init__.py
    • /usr/share/pyshared/pyew/plugins/diagrams.py
    • /usr/share/pyshared/pyew/plugins/easygui.py
    • /usr/share/pyshared/pyew/plugins/graphs.py
    • /usr/share/pyshared/pyew/plugins/ole2.py
    • /usr/share/pyshared/pyew/plugins/packer.py
    • /usr/share/pyshared/pyew/plugins/pdf.py
    • /usr/share/pyshared/pyew/plugins/pdfid_PL.py
    • /usr/share/pyshared/pyew/plugins/shellcode.py
    • /usr/share/pyshared/pyew/plugins/threatexpert.py
    • /usr/share/pyshared/pyew/plugins/url.py
    • /usr/share/pyshared/pyew/plugins/virustotal.py
    • /usr/share/pyshared/pyew/plugins/vmdetect.py
    • /usr/share/pyshared/pyew/plugins/xdot.py

    Changelog

    2012-01-03 - David Martínez Moreno <ender@debian.org> pyew (2.0-3) unstable; urgency=low * debian/patches/02_kenshoto_bad_import: The import in Kenshoto's ELF parser __init__.py is wrong and doesn't work in some situations.

    2011-12-25 - David Martínez Moreno <ender@debian.org> pyew (2.0-2) unstable; urgency=low * debian/control: Added python to Build-Depends to have dh_python2.

    2011-12-23 - David Martínez Moreno <ender@debian.org> pyew (2.0-1) unstable; urgency=low * Initial release (closes: #651893). * This version was released on Feb 8th, 2011. * Main changes in this release are: - Code analysis system for x86 rewritten from scratch. - Support for databases. You can analyze binaries (PE or ELF) and save/open databases. - Added graph-based clusterization tool 'gcluster.py'. - Added new PDF utilities: * pdfss: Seek to one stream * pdfobj: Show object's list * pdfso: Seek to one object - Added new plugins: * binvi: Show an image representing the contents of the file. Useful to see different sections in a binary. * packer: Check if the PE file is packed. * cgraph: Show the callgraph of the whole program (needs PyGTK to show a GUI). - Many bug fixes.

    Advertisement
    Advertisement