Tool and Usage
LIEF is a library to analyze executable formats like ELF, MachO, and PE. It can be used during reverse engineering, binary analysis, and malware research.
LIEF is short for Library to Instrument Executable Formats.
Why this tool?
In several occasions, it may be useful to perform analysis on binary file formats. Such occasion could be incident response, digital forensics, or as part of reverse engineering tasks. In these cases, a toolkit like LIEF can help to perform this job. It allows you to parse and modify the files. LIEF also will make information available an application programmable interface (API) for automated processing.
Usage and audience
LIEF is commonly used for binary analysis, malware analysis, or reverse engineering. Target users for this tool are developers and security professionals.
- LIEF is written in Python
- Application programming interface (API) available
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + The source code of this software is available
Supported operating systems
LIEF is known to work on Linux, macOS, and Microsoft Windows.
|Latest release||0.8.3 [2017-10-29]|
|License||Apache License 2.0|
|Last updated||Jan. 27, 2018|
|LIEF GitHub project|
|LIEF project website|