您的位置:首页 > 编程开发 > 加壳脱壳 > 探壳工具peid8
探壳工具peid8
软件信息
  • 软件大小:106 MB
  • 软件语言:简体中文
  • 下载次数:
  • 开 发 商:官方官网
  • 软件类别:加壳脱壳
  • 软件授权:绿色版
  • 更新时间:2013-05-17
  • 应用平台:WinXP/2000,Win7/Vista


PE iDentifier 0.8 by snaker & Qwerton
-------------------------------------

PEiD detects most common packers, cryptors and compilers for PE files. It can currently detect more than 300 different signatures in PE files.

PEiD is special in some aspects when compared to other identifiers already out there!

1. It has a superb GUI and the interface is really intuitive and simple.
2. Detection rates are amongst the best given by any other identifier.
3. Special scanning modes for *advanced* detections of modified and unknown files.
4. Shell integration, Commandline support, Always on top  and Drag'n'Drop capabilities.
5. Multiple file and directory scanning.
6. Task viewer and controller.
7. Generic OEP Finder module.


There are 3 different and unique scanning modes in PEiD.

The *Default Method* scans the PE files at their Entry Point for all documented signatures. This is what all other identifiers also do.

The *Hardcore Method 1* scans the PE file's Entry Point containing section for all the documented signatures. This ensures detection of around 80% of modified and scrambled files.

The *Hardcore Method 2* does a complete scan of the entire PE file for the documented signatures. You should use this mode as a last option as the small signatures often tend to occur a lot in many files and so erroneous outputs may result.

The scanner's inbuilt scanning techniques have error control methods which generally ensure correct outputs even if the last mode is chosen. The first two methods produce almost instantaneous outputs but the last method is a bit slow due to obvious reasons!


Task Viewing / Control Module
-----------------------------

You can scan currently running tasks with PEiD. The files are scanned from the memory. Processes can also be terminated. You can also optionally dump a module and scan the dumped image.


OEP Finding Module
------------------

PEiD uses Generic OEP Finder v0.006 DLL to generically find OEP of packed executables. It works with almost all packers and protectors except a few ( Console mode applications and Armadillo for example ). Please keep in mind that since the technique used is absolutely generic, the OEP returned is a probable one. You should perhaps verify it your self. However most HLL executable OEPs are correctly determined. Please remeber that GENOEP is an experimental project and is sure to contain bugs. Feel free to report bugs and suggestions to us.


Multiple File Scan Module
-------------------------

You can scan multiple files at one go with PEiD. Just drag and drop the files on the PEiD main dialog and the Multiple File Scan Dialog will popup displaying the results. You can keep dragging and droping files onto this dialog as well. It also offers you to choose from the different scanning modes and optionally load a single file in PEiD. It allows you to skip the non PE files so that the list looks clean. You can also scan the contents of a directory choosing files of custom extension if required.

 

We intend to update the signatures quite often to keep pace with this ever involving scene :)

Please report all bugs and ideas to Qwerton -> Please report new signatures or packer info to snaker -> ALL SUGGESTIONS, IDEAS, BUG REPORTS AND CRITICS ARE WELCOME.


History
-------

0.7 Beta -> First public release.

0.8 Public -> Added suport for 40 more packers. OEP finding module. Task viewing/control module.
GUI changes. General signature bug fixes. Multiple File and Directory Scanning module.


Greets
------

Qwerton, CHRiST0PH, uno, DAEMON, MackT, VAG, SAC, Gamumba, SnowP and all the rest at UG2002, Michael Hering, tE!, pusher, CoDE, BaND, Snacker,  skamer, HypnZ, ParaBytes, Clansman, innuendo, dshadow, cokine, AiRW0lF, fxfighter, Carpathia, LordofLA, r!sc, NoodleSPA, SiR_dReaM, CHoRDLeSS, JaCK, p0tHEAD, XasX and all at TNT! and all who helped with PEiD :)

snaker, cokine, Iczelion, Clansman, Z-Wing, Unknown One/TMG, PeeWee, DnNuke, sinny/BAFH, all the other nice people in CiA, UG2002 and all of you who helped us develope PEiD. Thanks!


Michael Hering - FILE INFO is still the absolute best. We remember your suggestions :)
UG2002 - Lets rock in 2002. Yehaaaaw!
MackT - Thanks for all your help and for ImpREC ofcourse ;)
Unknown One - We miss your criticism of PEiD. Come back mate :)
y0da - Your ASM and C sources rock man. We are indebted to you.
snyper - pe-scan is good. Keep working on it.
Kaparo & Aaron - You guys keep the scene alive. We bow down to you :)


We would also like to thank the *few* people who sent us their comments and feedback about PEiD 0.7 Beta. Without you this new release would never be possible.

You can check out the PEiD homepage at
snaker & Qwerton Productions
-2002-

 

 

软件下载地址
所有软件的破解版,激活码,序列号,注册机均搜集于网络,若有侵权请联系我们,我们支持正版!
最新评论
选择评论类型:
装机必备软件
[quote] [size=4][b][url=http://www.xiaolinzi.com/soft/8434.html]探壳工具peid8[/url][/b][/size] [b]软件大小:[/b] 106 MB
[b]软件语言:[/b] 简体中文
[b]软件类别:[/b] 加壳脱壳
[b]运行环境:[/b] WinXP/2000,Win7/Vista
[b]授权方式:[/b] 绿色版
[b]整理时间:[/b] 2013-05-17
[b]软件简介:[/b]


PE iDentifier 0.8 by snaker & Qwerton
-------------------------------------

PEiD detects most common packers, cryptors and compilers for PE files. It can currently detect more than 300 different signatures in PE files.

PEiD is special in some aspects when compared to other identifiers already out there!

1. It has a superb GUI and the interface is really intuitive and simple.
2. Detection rates are amongst the best given by any other identifier.
3. Special scanning modes for *advanced* detections of modified and unknown files.
4. Shell integration, Commandline support, Always on top  and Drag'n'Drop capabilities.
5. Multiple file and directory scanning.
6. Task viewer and controller.
7. Generic OEP Finder module.


There are 3 different and unique scanning modes in PEiD.

The *Default Method* scans the PE files at their Entry Point for all documented signatures. This is what all other identifiers also do.

The *Hardcore Method 1* scans the PE file's Entry Point containing section for all the documented signatures. This ensures detection of around 80% of modified and scrambled files.

The *Hardcore Method 2* does a complete scan of the entire PE file for the documented signatures. You should use this mode as a last option as the small signatures often tend to occur a lot in many files and so erroneous outputs may result.

The scanner's inbuilt scanning techniques have error control methods which generally ensure correct outputs even if the last mode is chosen. The first two methods produce almost instantaneous outputs but the last method is a bit slow due to obvious reasons!


Task Viewing / Control Module
-----------------------------

You can scan currently running tasks with PEiD. The files are scanned from the memory. Processes can also be terminated. You can also optionally dump a module and scan the dumped image.


OEP Finding Module
------------------

PEiD uses Generic OEP Finder v0.006 DLL to generically find OEP of packed executables. It works with almost all packers and protectors except a few ( Console mode applications and Armadillo for example ). Please keep in mind that since the technique used is absolutely generic, the OEP returned is a probable one. You should perhaps verify it your self. However most HLL executable OEPs are correctly determined. Please remeber that GENOEP is an experimental project and is sure to contain bugs. Feel free to report bugs and suggestions to us.


Multiple File Scan Module
-------------------------

You can scan multiple files at one go with PEiD. Just drag and drop the files on the PEiD main dialog and the Multiple File Scan Dialog will popup displaying the results. You can keep dragging and droping files onto this dialog as well. It also offers you to choose from the different scanning modes and optionally load a single file in PEiD. It allows you to skip the non PE files so that the list looks clean. You can also scan the contents of a directory choosing files of custom extension if required.

 

We intend to update the signatures quite often to keep pace with this ever involving scene :)

Please report all bugs and ideas to Qwerton -> Please report new signatures or packer info to snaker -> ALL SUGGESTIONS, IDEAS, BUG REPORTS AND CRITICS ARE WELCOME.


History
-------

0.7 Beta -> First public release.

0.8 Public -> Added suport for 40 more packers. OEP finding module. Task viewing/control module.
GUI changes. General signature bug fixes. Multiple File and Directory Scanning module.


Greets
------

Qwerton, CHRiST0PH, uno, DAEMON, MackT, VAG, SAC, Gamumba, SnowP and all the rest at UG2002, Michael Hering, tE!, pusher, CoDE, BaND, Snacker,  skamer, HypnZ, ParaBytes, Clansman, innuendo, dshadow, cokine, AiRW0lF, fxfighter, Carpathia, LordofLA, r!sc, NoodleSPA, SiR_dReaM, CHoRDLeSS, JaCK, p0tHEAD, XasX and all at TNT! and all who helped with PEiD :)

snaker, cokine, Iczelion, Clansman, Z-Wing, Unknown One/TMG, PeeWee, DnNuke, sinny/BAFH, all the other nice people in CiA, UG2002 and all of you who helped us develope PEiD. Thanks!


Michael Hering - FILE INFO is still the absolute best. We remember your suggestions :)
UG2002 - Lets rock in 2002. Yehaaaaw!
MackT - Thanks for all your help and for ImpREC ofcourse ;)
Unknown One - We miss your criticism of PEiD. Come back mate :)
y0da - Your ASM and C sources rock man. We are indebted to you.
snyper - pe-scan is good. Keep working on it.
Kaparo & Aaron - You guys keep the scene alive. We bow down to you :)


We would also like to thank the *few* people who sent us their comments and feedback about PEiD 0.7 Beta. Without you this new release would never be possible.

You can check out the PEiD homepage at
snaker & Qwerton Productions
-2002-

 

 

下载地址:[url=http://www.xiaolinzi.com/soft/8434.html]点击这儿下载[/url]
如点击地址不能下载,请这里下载:http://www.xiaolinzi.com/soft/8434.html [/quote]

联系我们 | 版权声明 | 帮助(?) | 广告服务 |
若有侵犯你的权益,请联系我们,本站所有资源均来自互联网,我们支持正版权益
 Copyright © 2010-2013 XIAOLINZI.小林子下载站 版权所有 Power by DedeCms  闽ICP备09018295号