Skip to content
/ wchecksec Public

Check PE protections ((ASLR, DEP, CFG, SafeSEH, GS, Isolation, Force Integrity, Authenticode))

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Calana2/wchecksec

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
README.md
README.md
 
 
install.sh
install.sh
 
 
wchecksec.go
wchecksec.go
 
 
wchecksec_ghidra.py
wchecksec_ghidra.py
 
 

Repository files navigation

wchecksec

Check PE protections: ASLR, DEP, CFG, SafeSEH, GS, Isolation, Force Integrity, Authenticode

A go script and a python script for Ghidra.

PE Protections Checked

  • ASLR
    • Base
    • High Entropy
    • Stripped relocations
  • GS
    • Entry Load Config Directory assertion
    • Heuristic pattern search (TODO in the ghidra script)
  • DEP
  • CFG
  • SafeSEH
  • Isolation
  • Force Integrity
  • Authenticode

Miscellaneous Information

  • Machine (Architecture)
  • .NET verification

Build & Install (standalone go binary - Linux)

git clone https://github.com/Calana2/wchecksec.git
cd wchecksec
chmod u+x install.sh
sudo ./install.sh

Ghidra Script - Installation

  1. Open any file in Ghidra for analysis
  2. Select the Window / Script Manager menu
  3. Click the "Script Directories" icon in the upper right toolbar
  4. Add this directory script via the green plus sign

Or just add the script to an existing valid directory.

About

Check PE protections ((ASLR, DEP, CFG, SafeSEH, GS, Isolation, Force Integrity, Authenticode))

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 4

v1.1.1 Latest
Dec 11, 2025
+ 3 releases

Packages

No packages published

Languages