LinuxCommandLibrary

readpe

Display information about PE executable files

TLDR

Display all information about a PE file

$ readpe path/to/executable
copy
Display all headers in a PE file
$ readpe --all-headers path/to/executable
copy
Display all sections in a PE file
$ readpe --all-sections path/to/executable
copy
Display a specific header (dos, coff, optional)
$ readpe --header dos path/to/executable
copy
List all imported functions
$ readpe --imports path/to/executable
copy
List all exported functions
$ readpe --exports path/to/executable
copy

SYNOPSIS

readpe [options] file

DESCRIPTION

readpe displays information about PE (Portable Executable) files, the executable format used by Windows. It can analyze headers, sections, imports, and exports from EXE, DLL, and other PE files.
This tool is useful for binary analysis, reverse engineering, and understanding executable structure.

PARAMETERS

--all-headers

Display all headers present in the PE file
--all-sections
Display all sections in the PE file
--header type
Display specific header (dos, coff, optional)
--imports
List imported functions
--exports
List exported functions

CAVEATS

Only works with valid PE format files. Malformed or corrupted PE files may not parse correctly.

HISTORY

Part of pev, the PE file analysis toolkit for Unix-like systems.

SEE ALSO

objdump(1), readelf(1), file(1)

> TERMINAL_GEAR

Curated for the Linux community

Copied to clipboard

> TERMINAL_GEAR

Curated for the Linux community