PPEE - Puppy - PE Explorer

[r32]

Puppy es robusto contra archivos PE mal formados y diseñados, lo que lo hace útil para los inversores, malware y aquellos que desean inspeccionar los archivos PE con más detalles. Se admiten todos los directorios en un archivo PE, incluyendo Exportación, Importación, Recurso, Excepción, Certificado (se basa en la API de Windows), Reubicación de base, Depuración, TLS, Configuración de carga, Importación enlazada, IAT, Importación diferida y CLR (.Net).

Both PE32 and PE64 support
Examine YARA rules against opened file
Virustotal and OPSWAT's Metadefender query report
Statically analyze windows native and .Net executables
Robust Parsing of exe, dll, sys, scr, drv, cpl, ocx and more
Parse Rich Header
Edit almost every data structure
Easily dump sections, resources and .Net assembly directories
Entropy and MD5 calculation of the sections and resource items
View strings including URL, Registry, Suspicious, ... embedded in files
Resolve ordinal to name in imported APIs
Detect common resource types
Extract artifacts remained in PE file
Anomaly detection
Right-click for Copy, Search in web, Whois and dump
Built in hex editor
Explorer context menu integration
Descriptive information for data members
Refresh, Save and Save as menu commands
Drag and drop support
List view columns can sort data in an appropriate way
Open file from command line
Checksum validation
Plugin enabled

Web: https://www.mzrst.com/
D.Directa: https://www.mzrst.com/puppy/PPEE(puppy)%201.12.zip
Peso: 488 KB
MD5: B380F0CBB356F0A4022DCBFFB749FCF3

Requerido: Visual C++ 2010 Redistributable Package

Saludos.