This project parses multiple sections of Windows executable data format(PE) for educational purposes. It was purely written in C language with WINAPI. You can build the project with Visual Studio(by "cloning GitHub repository feature". For my case, Visual Studio Community 2022) in a Windows environment, and easily modify or suggest(by pull request) new stuff to the project!
- DOS Header
- Rich header (and the interpretation of
@comp.Idvalues) - NT Header (file and optional headers, for both 32-bit and 64-bit architecture)
- NT File Directory Header
- NT File Section Header
- NT IAT(Import Address Table)
- NT Export Directory
- NT EAT(Export Function Table)
- Relocation table (
.reloc)
(Feel free to contribute to this project to parse more information from more parts of PE format/fix incorrectly parsed sections in this project/...!)
