Detailed search
Categories /

Files - Miscellaneous (40)

MiTeC EXE Explorer v3.7.1 Updated

Ennovy on 8 Apr 2024
  • 4MB (uncompressed)
  • Released on 8 Apr 2024
  • Suggested by juvera

MiTeC EXE Explorer reads and displays executable file properties and structure. It is compatible with PE32 (Portable Executable), PE32+ (64bit), NE (Windows 3.x New Executable) and VxD (Windows 9x Virtual Device Driver) file types, as well as .NET executables.

The program identify compiler and packer/protector, enumerates introduced classes, used units and forms for files compiled by Borland compilers. It contains powerfull Resource Viewer that is able to abalyze and display all basic resouce types and some extra ones as JPEG, PNG, GIF, AVI, REGISTRY and Type Library viewer that enumerates all objects and creates import interface unit in Object Pascal language. Every type of resource can be saved to file.

Program data can be output to a text report.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: If "File | Persistent Layout" option is enabled, an INI file will be written to '%APPDATA%\MITEC\EXE Explorer'. Also writes to the Registry when "File | Shell Integration" is enabled (saved to 'HKLM\SOFTWARE\Classes\*\shell\EXE Explorer').
Stealth: ? Yes. But only without persistent layout or shell integration; otherwise see "Writes settings to" above.
Unicode support: Yes
License: Free for personal use
How to extract: Download the ZIP package and extract to a folder of your choice. Launch EXE.exe or EXE64.exe (for 64-bit OS).
Similar/alternative apps: PPEE, PEAnatomist, pestudio
What's new? See: https://mitec.cz/exe.html#VersionHistory
Latest comments
CornHolio the Gringo on 2018-02-06 16:27

All MiTeC software that I use, writes to registry.
MiTeC HexEdit 6.1.0
MiTeC Icon Explorer 4.2.0
MiTeC Mail Viewer 2.3.0
MiTeC Network Scanner 4.0

Therefore Ive used JauntePE060Nightly to make it true stealth.

Add comment

Detect It Easy v3.09

Andrew Lee on 1 Jan 2024
  • 14MB (uncompressed)
  • Released on 28 Dec 2023
  • Suggested by zzz

Detect It Easy (DIE) is a packer identifier in order to help define a file type. Comes in handy to analyze a file, determine its type and packer.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? No. HKCU\Software\QtProject
Unicode support: Yes
License: MIT License
How to extract: Download the "portable" ZIP package and extract to a folder of your choice. Launch die.exe.
What's new? See: https://github.com/horsicq/Detect-It-Easy/blob/master/changelog.txt
Latest comments
juverax on 2018-08-04 09:27

Detect It Easyv2.00
I checked two files in virustotal:
1) die.exe virustotal = 4/67 https://www.virustotal.com/#/file/3933bcc5ab10f3fc065c982d6b035af28aa10a33d2861e2c12896f960dae0ac8/detection
2) diel.exe virustotal = 3/66
https://www.virustotal.com/#/file/2f5b85c917cdc837fa93b3bd33adb5560084f4479d521256a52bc67d7b23540d/detection

Since the author also releases the source code, it must be false positives.

AndTheWolf on 2021-07-03 15:14

Now at version 3.02

Add comment

pestudio standard v9.55

__philippe on 8 Nov 2023
  • 2MB (uncompressed)
  • Released on 18 Sep 2023
  • Suggested by joby_toss

pestudio shows details about applications and other system files (.exe, .dll, .cpl, .ocx, .ax, .sys etc.) without starting them including:

  • Libraries that are used by an application
  • Functions that are imported by an application
  • Functions (also anonymous) that are exported by an application
  • All functions that are forwarded to other libraries
  • Obsolete Functions that are exported and imported by an application
  • If Data Execution Prevention (DEP) Windows security mechanism is used
  • If Address Space Layout Randomization (ASLR) Windows security mechanism is used
  • If Windows security mechanism Structured Exception Handling (SEH) is used
  • Whether some sections are compressed

pestudio standard lacks some features of pro version.

Category:
Runs on:Win2K / WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: Free for personal use/Liteware
How to extract: Download the ZIP package and extract to a folder of your choice. Delete AddToShell.reg and RemoveFromShell.reg. Launch pestudio.exe.
Similar/alternative apps: PPEE, PE Anatomist
What's new? See: https://www.winitor.com/tools/pestudio/changes.log
Latest comments
__philippe on 2017-11-26 21:39

All righty,... next time round,

the undersigned hereby pledge to abide by the recommendations, protocols,
procedures and regulations set forth by my Right Honourable Friend Midas,
the Member for TPFC's constituency,... cross my heart and hope to die... ;-)

__philippe

Special on 2019-09-14 18:16

Looks like with 8.98 they've removed even more features from the previous 9.87 free version (detect well-known whitelisted libraries/blacklisted resources), funny they don't mention that in the changelog.

MoisheP on 2021-08-15 03:13

v. 9.15 elicits numerous warnings.

See all

PEAnatomist 02.12224.1953

__philippe on 8 Nov 2023
  • 596KB (uncompressed)
  • Released on 24 Oct 2023
  • Suggested by billon

PEAnatomist shows almost all known data structures inside a PE file and makes some analytics.
Current version provides an entropy histogram possibly handy for cursory PE forensics

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: MIT License
How to extract: Download the ZIP package and extract to a folder of your choice. Launch PEAnatomist.exe.
Similar/alternative apps: PPEE, MiTeC EXE Explorer, pestudio
What's new? See: https://rammerlabs.alidml.ru/changelog-eng.html
Latest comments
__philippe on 2019-12-28 12:07

PE Anatomist changelog history:

https://rammerlabs.alidml.ru/changelog-eng.html

__philippe on 2021-11-05 10:42

PEanatomist notably includes (since v0.2.4) a colorful byte-level entropy(*) histogram of the file under analysis, possibly handy for inquiring minds dabbling in PE forensics ?

* Everything you always wanted to know about entropy histograms but were scared to ask...;-)
https://crucialsecurity.wordpress.com/tag/entropy/

Add comment

PPEE v1.13.1

Special on 10 Nov 2023
  • 2MB (uncompressed)
  • Released on 10 Nov 2023
  • Suggested by billon

PPEE (Professional PE file Explorer) allows analysis of malformed and crafted PE files, making it handy for reverse-engineering, malware researchers and more. The program includes PE Export, Import, Resource, Exception, Certificate (relies on Windows API), Base Relocation, Debug, TLS, Load Config, Bound Import, IAT, Delay Import and CLR.

The program includes a HEX editor and supports Virustotal and OPSWAT's Metadefender query reports.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10 / Wine
Writes settings to: Application folder
Unicode support: Yes
License: Freeware
How to extract: Download the ZIP package and extract to a folder of your choice. Delete Plugin folder. Launch PPEE.exe.
Similar/alternative apps: pestudio, MiTeC EXE Explorer
What's new?
  • Now PPEE is independent of Microsoft redistributable package
  • Added Recent Files in the main PPEE menu
  • Load Config parsing improved to the newest version
  • Undecorate mangled names
  • Timestamps are human readable (relative to your local time)
  • YaraPlugin is now compatible with yara v4.3.2
  • Added Recent Files in the YaraPlugin
  • TLSH hash added in FileInfo plugin
  • Bugfixes
Latest comments
smaragdus on 2018-04-12 09:27

@doctor__philippe
What other kind of maladies do you cure? Or only software ones?

__philippe on 2018-04-12 17:50

Now that you mention it, I have been known to cure images hosting service broken links...;-)
https://www.portablefreeware.com/forums/viewtopic.php?p=89747#p89747

smaragdus on 2018-04-13 00:12

@@doctor__philippe
Thanks for the new cure!

See all

Recent Searches

Popular Titles

Recent Forum Posts The Portable Freeware Collection Recent Forum Posts Feed

Recent Comments The Portable Freeware Collection Recent Comments Feed

Recent Updates

The Portable Freeware Collection

All rights reserved. Copyright © 2010-2020 Andrew Lee (mailto: andrew at portablefreeware dot com). Website design by tproli Copyright © 2012.

Go to top