Tool and Usage
- Apache License 2.0
- Programming language
- Romain Thomas
- Latest release
- Latest release date
LIEF is short for Library to Instrument Executable Formats.
Why this tool?
In several occasions, it may be useful to perform analysis on binary file formats. Such occasion could be incident response, digital forensics, or as part of reverse engineering tasks. In these cases, a toolkit like LIEF can help to perform this job. It allows you to parse and modify the files. LIEF also will make information available an application programmable interface (API) for automated processing.
Usage and audience
LIEF is commonly used for binary analysis, malware analysis, or reverse engineering. Target users for this tool are developers and security professionals.
- Application programming interface (API) available
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + The source code of this software is available
Supported operating systems
LIEF is known to work on Linux, Microsoft Windows, and macOS.
Similar tools to LIEF:
Cutter is a graphical user interface for radare2, the well-known reverse engineering framework. Read how it works in this review.
Radare2 is a tool to perform reverse engineering on files of all types. It can be used to analyze malware, firmware, or any other type of binary files. Read how it works in this review.
Looking for a way to perform reverse engineering or dynamic analysis? PyREBox is an instrumentation tool for virtual machines. Learn how it works and its benefits.
This tool page was updated at . Found an improvement? Help the community by submitting an update.
Related tool information
This tool is categorized as a Linux malware analysis tool, Linux reverse engineering tool, and binary analysis tool.