![]() ![]() Malware detection: Detect malware in PE files.File analysis: Tools for analyzing PE files in detail, including the ability to view and edit the file's headers, import and export tables and other data structures.Customization: Options that allow you to tailor the tool to your specific needs and preferences.It can also be used to grab information from VirusTotal, allowing users to quickly determine whether the file has been flagged by any antivirus applications.įor users and administrators who often have to deal with executables, PeStudio is an excellent tool which provides both details for troubleshooting but also other known information from the web. Once loaded, it will display different bits of information such as the libraries it uses and loads, import and export functions, compatibility and more. To perform an analysis of a particular file, you can drag it from Windows Explorer into the program interface. It supports both 32-bit and 64-bit EXE files. PeStudio is a portable and free program which is able to examine executable files in depth. ![]() whether some sections are compressed, and more.Malware analysis tool which investigages the resources of EXE files.whether Structured Exception Handling - SEH Windows security mechanism is used.whether the Address Space Layout Randomization (ASLR) Windows security mechanism is used.whether the Data Execution Prevention (DEP) Windows security mechanism is used.Obsolete Functions that are exported and imported by an application.all functions that are forwarded to other libraries.all functions (also anonymous) that are exported by an application.all functions that are imported by an application.all libraries that are used by an application.PeStudio shows you much more details, like: How do you verify whether an application is 64-bit capable or if the Data Execution Prevention (DEP) or the Address Space Layout Randomization (ASLR) features are used? Do you want to be sure whether your application uses functions that have been recognized as obsolete, and thus presents a potential security risk for your customer's infrastructure?Īll these questions, and many more, can be answered easily with PeStudio! ![]() With PeStudio, you can inspect and thus validate any 32-bit or 64-bit application (*.exe, *.dll, *.cpl, *.ocx, *.ax, *.sys. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |