RE FORUM
[REVERSE ENGINEERING] => Tools => Topic started by: llAmElliK on June 29, 2005, 05:09:33 PM
-
PEiD 0.93
Added sorting of Plugin menu items. Submenus are created based on subfolders in the directory.
Added Brizo disassembler core. Added some more detections.
Fixed documented and undocumented vulnerability issues.
Fixed some general bugs.
Removed mismatch mode scanner which needs further improvements.
http://www.secretashell.com/codomain/peid/download.html
-
PEiD Plugin Loader v1.08
* direct plugin loading
* command line support
* drag-n-drop support
* debug support
http://jupiter.fatal.ru/dev/plugins/plgldr/j-PlgLdr108.zip
-
External Signature pro PEiD. + userDB .
(nakopírujte do adresáře k PEiD).
-
String Viewer Plugin For PEiD
-
Signatury pro PEiD - by Z!LOG80
[ActiveMARK -> tRYMEDIA]
signature = 89 25 ?? ?? ?? ?? 68
ep_only = True
[ActiveMARK -> tRYMEDIA]
signature = 89 25 ?? ?? ?? ?? EB
ep_only = True
[Peter system -> Gemtree 32-compiler]
signature = 55 8B EC 83 E4 F8 81 EC 28 01 00 00 53 55 56 57 FF 15 ?? ?? ?? ?? 68 ?? ?? ?? ?? A3 ?? ?? ?? ?? C7 05 ?? ?? ?? ?? ?? ?? ?? ?? FF 15 ?? ?? ?? ?? 33 DB 53 FF 15 ?? ?? ?? ?? A3 ?? ?? ?? ?? FF 15 ?? ?? ?? ?? 8D 88 1E FB FF FF 83 F9 07 77 54 FF 24 8D
ep_only = True
-
XNResourceEditor Plugin
-
PEiD Hash Hunter Plugin
-
For All a speciálně pro Master ;) - poslední "?havé"signatury pro PEiD - normál + external - stačí nakopírovat do adresáře k PEiD
-
thanks my lord :)
-
PEiD 0.94 - novinky nevím - ani na oficiální stránce zatím nic - pouze v About koukněte na signatury.
EDIT:Tak u? vím - je to BETA verze a NOT public - no snad mi to odpustíte..
-
[Enigma Protector 1.12 -> Vladimir Sukhov]
signature = 60 E8 00 00 00 00 5D 83 C5 FA 81 ED ?? ?? ?? 00 ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? E8 01 00 00 00 9A 83 C4 04 EB 02 FF 35 60 E8 24 00 00 00 00 00 FF EB 02 CD 20 8B 44 24 0C 83 80 B8 00 00 00 03 31 C0 C3 83 C0 08 EB 02 FF 15 89 C4 61 EB 2E EA EB 2B 83 04 24 03 EB 01 00 31 C0 EB 01 85 64 FF 30 EB 01 83 64 89 20 EB 02 CD 20 89 00 9A 64 8F 05 00 00 00 00 EB 02 C1 90 58 61 EB 01 3E EB 04
ep_only = true
-
PEiD Signature Organizer (by alephz)+ OLD FA 2000 Signatures
-
PEiDSO_121+UserDB
-
ASProtect detector by PE_Kill (PlugIn for DiE and PEiD)
Detects (except some heuristic):
ASProtect 1.1
ASProtect 1.1b
ASProtect 1.11c
ASProtect 1.2
ASProtect 1.23 Beta 18
ASProtect 1.23 RC1
ASProtect 1.23 RC4 build 08.07 Release
ASProtect 1.30 build 08.24 beta
ASProtect 1.31 build 04.19 Beta
ASProtect 1.31 build 04.27 Beta
ASProtect 1.31 build 05.18 RC
ASProtect 1.31 build 6.14 Release
ASProtect 1.32 build 10.04 Beta
ASProtect 1.32 build 10.20 Beta
ASProtect 1.33 build 03.07 Release
ASProtect 1.35 build 01.06 Release
ASProtect 1.35 build 01.14 Release
ASProtect 1.35 build 01.26 Release
ASProtect 1.35 build 04.25 Release
ASProtect 1.35 build 06.26 Release
ASProtect 1.4 build 01.14 Beta
ASProtect 1.4 build 01.26 Beta
ASProtect 2.00 build 01.13 Release
ASProtect 2.00 build 06.23 Alpha
ASProtect 2.00 build 10.04 Beta
ASProtect 2.00 build 10.20 Beta
AsProtect 2.1 build 02.19 Release
ASProtect 2.11 SKE build 03.13 Release
ASProtect 2.11 SKE build 04.27 Trial
ASProtect 2.2 SKE build 01.06 Release
ASProtect 2.2 SKE build 01.14 Release
ASProtect 2.2 SKE build 03.05 Release
ASProtect 2.2 SKE build 06.05 Release
ASProtect 2.2 SKE build 04.25 Release
ASProtect 2.3 SKE build 03.05 Beta
ASProtect 2.3 SKE build 03.19 Beta
ASProtect 2.3 SKE build 04.23 Beta
ASProtect 2.3 SKE build 04.25 Beta
ASProtect 2.3 SKE build 04.26 Beta
ASProtect 2.3 SKE build 05.14 Beta
ASProtect 2.3 SKE build 06.26 Beta
(testoval jsem a detekuje bravurne;))
-
PEiD Signature Organizer 1.3 alpha 3
-
PEiD detects most common packers, cryptors and compilers for PE files. It can currently detect more than 600 different signatures in PE files.
PEiD is special in some aspects when compared to other identifiers already out there!
1. It has a superb GUI and the interface is really intuitive and simple.
2. Detection rates are amongst the best given by any other identifier.
3. Special scanning modes for *advanced* detections of modified and unknown files.
4. Shell integration, Command line support, Always on top and Drag'n'Drop capabilities.
5. Multiple file and directory scanning with recursion.
6. Task viewer and controller.
7. Plugin Interface with plugins like Generic OEP Finder and Krypto ANALyzer.
8. Extra scanning techniques used for even better detections.
9. Heuristic Scanning options.
10. New PE details, Imports, Exports and TLS viewers
11. New built in quick disassembler.
12. New built in hex viewer.
13. External signature interface which can be updated by the user.
-
This DLL is for programmers, it has PEiD v0.94 embedded and uses the power of PEiD (invisibly) to scan a file passed to one of the functions to get the ID.
Also embedded is a 430k UserDB.TXT.. all files are in compressed archive, and DLL size in total is 242k unpacked (211k for archive, mostly 163k PEiD) ..
Included with this DLL is an example Console-PEiD type program, written in MASM and also two examples in Delphi. The first Delphi version checks the registry for the scan-mode settings of installed PEiD, the second demonstrates the new exports of PEiDLL v1.01 + v1.02 and using PEiDLL_Unit.pas to easily use PEiDLL.. Also included in the Delphi Examples dir is Multi.DPR - An example of a simple multi-scanner.
Type -? as the param for the examples to get usage instructions.
-
Cca 2600 PEiD Signatures.