pedump
« Back to VersTracker
Description:
Dump Windows PE files using Ruby
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: pe-file binary-analysis security reverse-engineering ruby
Install: brew install pedump
About:
Pedump is a Ruby-based tool designed for analyzing and extracting metadata from Windows Portable Executable (PE) files. It provides detailed insights into file headers, sections, imports, and resources without requiring a Windows environment. This utility is essential for security researchers and developers needing to inspect binary structures efficiently.
Key Features:
  • Extracts and displays PE file headers and section information
  • Lists imported and exported functions from DLLs
  • Supports resource extraction, including icons and version info
  • Runs on any platform with Ruby, no Windows dependency
Use Cases:
  • Malware analysis and reverse engineering of suspicious executables
  • Debugging and verifying application dependencies during development
Alternatives:
  • PEStudio – PEStudio is a GUI-based Windows tool offering advanced heuristics, while Pedump is a lightweight command-line utility for cross-platform use.
  • objdump – objdump is part of GNU Binutils for ELF formats; Pedump specializes in PE files with Ruby scriptability.
Version History
Detected Version Rev Change Commit
Sep 11, 2024 9:51pm 0 VERSION_BUMP 099606b0
« Back to VersTracker  |  Browse Packages  |  About