Skip to content

Calana2/wchecksec

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
README.md
README.md
 
 
install.sh
install.sh
 
 
wchecksec.go
wchecksec.go
 
 
wchecksec_ghidra.py
wchecksec_ghidra.py
 
 

Repository files navigation

wchecksec

Tool to check PE protections: ASLR, DEP, CFG, SafeSEH, GS, Isolation, Force Integrity, Authenticode.

A go script and a python script for Ghidra.

PE Protections Checked

  • ASLR
    • Base
    • High Entropy
    • Stripped relocations
  • GS
    • Entry Load Config Directory assertion
    • Heuristic pattern search (TODO in the ghidra script)
  • DEP
  • CFG
  • SafeSEH
  • Isolation
  • Force Integrity
  • Authenticode

Miscellaneous Information

  • Machine (Architecture)
  • .NET verification

Build & Install (standalone go binary - Linux)

git clone https://github.com/Calana2/wchecksec.git
cd wchecksec
chmod u+x install.sh
sudo ./install.sh

Ghidra Script - Installation

  1. Open any file in Ghidra for analysis
  2. Select the Window / Script Manager menu
  3. Click the "Script Directories" icon in the upper right toolbar
  4. Add this directory script via the green plus sign

Or just add the script to an existing valid directory.

About

Tool to check PE protections ((ASLR, DEP, CFG, SafeSEH, GS, Isolation, Force Integrity, Authenticode))

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 4

v1.1.1 Latest
Dec 11, 2025
+ 3 releases

Packages

 
 
 

Contributors

Languages