Tool and Usage
LIEF is a library to analyze executable formats like ELF, MachO, and PE. It can be used during reverse engineering, binary analysis, and malware research.
LIEF is short for Library to Instrument Executable Formats.
Why this tool?
In several occasions, it may be useful to perform analysis on binary file formats. Such occasion could be incident response, digital forensics, or as part of reverse engineering tasks. In these cases, a toolkit like LIEF can help to perform this job. It allows you to parse and modify the files. LIEF also will make information available an application programmable interface (API) for automated processing.
Usage and audience
LIEF is commonly used for binary analysis, malware analysis, or reverse engineering. Target users for this tool are developers and security professionals.
- LIEF is written in Python
- Application programming interface (API) available
- + The source code of this software is available
Author and Maintainers
LIEF is under development by Romain Thomas.
Support operating systems
LIEF is known to work on Linux, macOS, and Microsoft Windows.
|Latest release||0.7.0 [2017-07-01]|
|License(s)||Apache License 2.0|
|Last updated||Sept. 29, 2017|
|LIEF GitHub project|
|LIEF project website|