Cerbero SDK Documentation¶
This is the official documentation for Cerbero Suite and Cerbero Engine.
Note
We are in the process of documenting our entire SDK module by module, with all core modules already fully documented.
Guides¶
Core Modules¶
Pro.Core— Core API for parsing and scanning filesPro.UI— User-interface API for views, dialogs and workspacesPro.Crypto— Crypto APIPro.Carbon— API for disassembling and decompiling native binariesPro.MP— Multi-Processing APIPro.SiliconSpreadsheet— Spreadsheet macro emulation APIPro.Package— API for handling packages
Built-in File Format Modules¶
The list below includes only the built-in file formats that have been made accessible to Python. It does not encompass all built-in file formats.
Pro.CAB— API for parsing Microsoft Cabinet filesPro.Certificates— API for parsing certificatesPro.CFBF— API for parsing legacy Office documentsPro.Class— API for parsing Java Class filesPro.DEX— API for parsing Android DEX filesPro.DIB— API for parsing DIB imagesPro.GIF— API for parsing GIF imagesPro.GZ— API for parsing GZip archivesPro.ITSF— API for parsing Microsoft CHM filesPro.JPEG— API for parsing JPEG imagesPro.PDF— API for parsing PDF documentsPro.PNG— API for parsing PNG imagesPro.SQLite3— API for parsing SQLite3 databasesPro.WScript— API for parsing Windows Script filesPro.Zip— API for parsing Zip archives
Pro.ELF- API for parsing ELF executables (TODO)
Pro.MachO- API for parsing Mach-O executables (TODO)
Pro.PDB- API for parsing Microsoft debug files (TODO)
Pro.PE- API for parsing Portable Executables (TODO)
Pro.RTF- API for parsing Rich-Text documents (TODO)
Pro.SWF- API for parsing Adobe Flash files (TODO)
Pro.TIFF- API for parsing TIFF images (TODO)
Pro.XML- API for parsing XML documents (TODO)
Installable File Format Modules¶
The list below includes only the installable file formats that have been made accessible to Python. It does not encompass all installable file formats.
Pkg.ActiveMime- API for parsing ActiveMime files (TODO)
Pkg.AR- API for parsing AR archives (TODO)
Pkg.CRX- API for parsing Chrome extensions (TODO)
Pkg.DotNETManifestResources- API for parsing .NET manifest resources (TODO)
Pkg.DSStore- API for parsing Apple’s .DS_Store files (TODO)
Pkg.FLIR- API for parsing Forward-Looking InfraRed data (TODO)
Pkg.ISO- API for parsing ISO file systems (TODO)
Pkg.OneNote- API for parsing Microsoft OneNote documents (TODO)
Pkg.PCAP- API for parsing PCAP and PCAPNG packet capture files (TODO)
Pkg.PList- API for parsing Apple’s property list files (TODO)
Pkg.PYC- API for parsing Python compiled bytecode files (TODO)
Pkg.RAR- API for parsing RAR archives (TODO)
Pkg.RegHive- API for parsing Windows Registry hive files (TODO)
Pkg.RPM- API for parsing RPM archives (TODO)
Pkg.SevenZip- API for parsing 7z archives (TODO)
Pkg.TAR- API for parsing TAR archives (TODO)
Pkg.Torrent- API for parsing torrent files (TODO)
Pkg.XAR- API for parsing XAR archives (TODO)
Pkg.XLSX- API for parsing Microsoft Excel XLSX files (TODO)
Pkg.XZ- API for parsing XZ archives (TODO)
Other Installable Module Packages¶
The list below includes only the installable packages that have been made accessible to Python. It does not encompass all installable packages.
Pkg.APISolver- API for resolving API names from their checksums (TODO)
Pkg.PowerShellBeautifier- API for deobfuscating Microsoft PowerShell scripts (TODO)
Pkg.Py2ExeExtractor- API for unpacking Py2Exe executables (TODO)
Pkg.PyInstallerExtractor- API for unpacking PyInstaller executables (TODO)
Pkg.SiliconShellcodeEmulator- API for emulating Windows shellcodes (TODO)
Pkg.SimpleBatchEmulator- API for emulating Windows batch scripts (TODO)
Pkg.UPXUnpacker- API for unpacking UPX compressed executables (TODO)
Pkg.YARARules- API for managing YARA rules (TODO)
External Built-in Modules¶
Pro.magic- magic library API (TODO)
Pro.SQLite- API for handling SQLite3 databases (TODO)
Pro.yara- YARA engine API (TODO)
Pro.zmq- ZeroMQ API (TODO)