Categories /

Programming - Resource Tools (15)

MiTeC EXE Explorer v3.7.1 Updated

Ennovy on 8 Apr 2024
  • 4MB (uncompressed)
  • Released on 8 Apr 2024
  • Suggested by juvera

MiTeC EXE Explorer reads and displays executable file properties and structure. It is compatible with PE32 (Portable Executable), PE32+ (64bit), NE (Windows 3.x New Executable) and VxD (Windows 9x Virtual Device Driver) file types, as well as .NET executables.

The program identify compiler and packer/protector, enumerates introduced classes, used units and forms for files compiled by Borland compilers. It contains powerfull Resource Viewer that is able to abalyze and display all basic resouce types and some extra ones as JPEG, PNG, GIF, AVI, REGISTRY and Type Library viewer that enumerates all objects and creates import interface unit in Object Pascal language. Every type of resource can be saved to file.

Program data can be output to a text report.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: If "File | Persistent Layout" option is enabled, an INI file will be written to '%APPDATA%\MITEC\EXE Explorer'. Also writes to the Registry when "File | Shell Integration" is enabled (saved to 'HKLM\SOFTWARE\Classes\*\shell\EXE Explorer').
Stealth: ? Yes. But only without persistent layout or shell integration; otherwise see "Writes settings to" above.
Unicode support: Yes
License: Free for personal use
How to extract: Download the ZIP package and extract to a folder of your choice. Launch EXE.exe or EXE64.exe (for 64-bit OS).
Similar/alternative apps: PPEE, PEAnatomist, pestudio
What's new? See: https://mitec.cz/exe.html#VersionHistory
Latest comments
CornHolio the Gringo on 2018-02-06 16:27

All MiTeC software that I use, writes to registry.
MiTeC HexEdit 6.1.0
MiTeC Icon Explorer 4.2.0
MiTeC Mail Viewer 2.3.0
MiTeC Network Scanner 4.0

Therefore Ive used JauntePE060Nightly to make it true stealth.

Add comment

RisohEditor v5.8.1

Ennovy on 4 Mar 2024
  • 8MB (uncompressed)
  • Released on 4 Mar 2024
  • Suggested by rbon

RisohEditor is a resource editor for Win32 development. It supports adding, editing, extracting, cloning and removing resource data in EXE/DLL/RC/RES files. This includes resources such as dialogs, menus, icons, cursors, string tables, message tables etc.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: GPL
How to extract: Download the ZIP package and extract to a folder of your choice. Launch RisohEditorPortable.exe.
Similar/alternative apps: ResourceHacker, ResEdit
What's new? See: https://github.com/katahiromz/RisohEditor/releases
Latest comments
juverax on 2022-03-31 15:34

Softpedia download link (portable version): 404 Not found
But it is available at : https://github.com/katahiromz/RisohEditor/releases/download/5.7.1/RisohEditor-5.7.1-portable.zip

Add comment

Resource Hacker v5.2.7

Ennovy on 19 Nov 2023

Resource Hacker is an utility to view, modify, rename, add, delete and extract resources in 32-bit and 64-bit Windows executables and resource files (*.res). The program can modify program icons as they appear in the taskbar, Start Menu and Desktop, among many other things.

It incorporates an internal resource script compiler and decompiler.

Category:
Runs on:Win2K / WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: Freeware
How to extract: Download the ZIP package and extract to a folder of your choice. Launch ResourceHacker.exe.
Similar/alternative apps: ResEdit, RisohEditor
What's new?
  • In 5.2.7
  • fixed minor bugs in commandline scripts
  • In 5.2.6
  • fixed a bug incorrectly detecting text encoding
  • fixed several other minor bugs
Latest comments
MIKLO on 2016-10-09 14:10

Have been using for quite some time and really like this program. Thanks for a good program.
MIKLO

rbon on 2016-10-15 12:20

Resource Hacker new Beta in 'Portable' zip format.
Changes in 4.5.28
- Update: Numerous changes and improvements to command line support.
- Update: Filenames in resource scripts are no longer required to be enclosed within double quotes unless they contain
spaces.
- 'Portable' zip file: http://www.angusj.com/resourcehacker/resource_hacker_beta.zip

Ennovy on 2020-11-14 14:03

Changes in 5.1.8:
Added: Zooming/scrolling views of image resources
Update: Enabled scrolling for very tall dialogs
Bugfix: Very large binary resources (>>100Mb) could crash the hex editor
Bugfix: Occasional bug decompiling dialogs styles (WS_TABSTOP)
Bugfix: RC file missing when extracting a binary resource type from commandline

See all

pestudio standard v9.55

__philippe on 8 Nov 2023
  • 2MB (uncompressed)
  • Released on 18 Sep 2023
  • Suggested by joby_toss

pestudio shows details about applications and other system files (.exe, .dll, .cpl, .ocx, .ax, .sys etc.) without starting them including:

  • Libraries that are used by an application
  • Functions that are imported by an application
  • Functions (also anonymous) that are exported by an application
  • All functions that are forwarded to other libraries
  • Obsolete Functions that are exported and imported by an application
  • If Data Execution Prevention (DEP) Windows security mechanism is used
  • If Address Space Layout Randomization (ASLR) Windows security mechanism is used
  • If Windows security mechanism Structured Exception Handling (SEH) is used
  • Whether some sections are compressed

pestudio standard lacks some features of pro version.

Category:
Runs on:Win2K / WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: Free for personal use/Liteware
How to extract: Download the ZIP package and extract to a folder of your choice. Delete AddToShell.reg and RemoveFromShell.reg. Launch pestudio.exe.
Similar/alternative apps: PPEE, PE Anatomist
What's new? See: https://www.winitor.com/tools/pestudio/changes.log
Latest comments
__philippe on 2017-11-26 21:39

All righty,... next time round,

the undersigned hereby pledge to abide by the recommendations, protocols,
procedures and regulations set forth by my Right Honourable Friend Midas,
the Member for TPFC's constituency,... cross my heart and hope to die... ;-)

__philippe

Special on 2019-09-14 18:16

Looks like with 8.98 they've removed even more features from the previous 9.87 free version (detect well-known whitelisted libraries/blacklisted resources), funny they don't mention that in the changelog.

MoisheP on 2021-08-15 03:13

v. 9.15 elicits numerous warnings.

See all

PEAnatomist 02.12224.1953

__philippe on 8 Nov 2023
  • 596KB (uncompressed)
  • Released on 24 Oct 2023
  • Suggested by billon

PEAnatomist shows almost all known data structures inside a PE file and makes some analytics.
Current version provides an entropy histogram possibly handy for cursory PE forensics

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: MIT License
How to extract: Download the ZIP package and extract to a folder of your choice. Launch PEAnatomist.exe.
Similar/alternative apps: PPEE, MiTeC EXE Explorer, pestudio
What's new? See: https://rammerlabs.alidml.ru/changelog-eng.html
Latest comments
__philippe on 2019-12-28 12:07

PE Anatomist changelog history:

https://rammerlabs.alidml.ru/changelog-eng.html

__philippe on 2021-11-05 10:42

PEanatomist notably includes (since v0.2.4) a colorful byte-level entropy(*) histogram of the file under analysis, possibly handy for inquiring minds dabbling in PE forensics ?

* Everything you always wanted to know about entropy histograms but were scared to ask...;-)
https://crucialsecurity.wordpress.com/tag/entropy/

Add comment

PPEE v1.13.1

Special on 10 Nov 2023
  • 2MB (uncompressed)
  • Released on 10 Nov 2023
  • Suggested by billon

PPEE (Professional PE file Explorer) allows analysis of malformed and crafted PE files, making it handy for reverse-engineering, malware researchers and more. The program includes PE Export, Import, Resource, Exception, Certificate (relies on Windows API), Base Relocation, Debug, TLS, Load Config, Bound Import, IAT, Delay Import and CLR.

The program includes a HEX editor and supports Virustotal and OPSWAT's Metadefender query reports.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10 / Wine
Writes settings to: Application folder
Unicode support: Yes
License: Freeware
How to extract: Download the ZIP package and extract to a folder of your choice. Delete Plugin folder. Launch PPEE.exe.
Similar/alternative apps: pestudio, MiTeC EXE Explorer
What's new?
  • Now PPEE is independent of Microsoft redistributable package
  • Added Recent Files in the main PPEE menu
  • Load Config parsing improved to the newest version
  • Undecorate mangled names
  • Timestamps are human readable (relative to your local time)
  • YaraPlugin is now compatible with yara v4.3.2
  • Added Recent Files in the YaraPlugin
  • TLSH hash added in FileInfo plugin
  • Bugfixes
Latest comments
smaragdus on 2018-04-12 09:27

@doctor__philippe
What other kind of maladies do you cure? Or only software ones?

__philippe on 2018-04-12 17:50

Now that you mention it, I have been known to cure images hosting service broken links...;-)
https://www.portablefreeware.com/forums/viewtopic.php?p=89747#p89747

smaragdus on 2018-04-13 00:12

@@doctor__philippe
Thanks for the new cure!

See all

GDIView v1.26

billon on 5 Dec 2016
  • 73KB (uncompressed)
  • Released on 4 Dec 2016
  • Suggested by JohnW

GDIView displays the list of Graphics Device Interface (GDI) handles including brushes, pens, fonts, bitmaps, and more opened by every process. It displays the total count for each type of GDI handle, as well as detailed information about each handle. This tool can be useful for developers that need to trace GDI resources leak in their software.

Category:
Runs on:Win2K / WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
License: Freeware
How to extract: Download the ZIP package and extract to a folder of your choice. Launch GDIView.exe.
What's new?
  • Added 'Save All Items' menu item.

ResEdit v1.6.6

Andrew Lee on 16 Dec 2021
  • 2MB (uncompressed)
  • Released on 2 May 2015
  • Suggested by Ruby

ResEdit is a resource editor. You can use it if you want to use dialogs, icon, version information or other types of resources. Output files can be compiled by any Win32 compiler, like MinGW and Microsoft Visual C++.

Category:
Runs on:WinXP / Vista / Win7
Writes settings to: Application folder
Stealth: ? Yes
Unicode support: Yes
License: Freeware
How to extract: Download the 7z package and extract to a folder of your choice. Launch ResEdit.exe.
Similar/alternative apps: ResourceHacker, RisohEditor
Latest comments
Midas on 2015-04-26 12:26

Maybe I'm just dense, but I use resource editors frequently, yet could never get the hang of ResEdit. Can anyone suggest some kind of straightforward tutorial?

__philippe on 2017-04-07 16:34

@Midas,

My advice: stay well clear of this ResEdit devilish contraption.
The bloody thing decided to keep crashing on my XP, of late, BSOD included...:-(

Use old faithful ResourceHacker instead :
https://www.portablefreeware.com/index.php?id=289

Developer Angus Johnson obligingly provides a rich sampling of usage screenshots:
http://www.angusj.com/resourcehacker/

Midas on 2017-04-08 02:53

Thanks __philippe. As I never did get the hang of ResEdit, ResourceHacker is still my number one go to hacking tool. (Has been like forever.) :)

See all

HeapMemView v1.05

Checker on 21 Mar 2014
  • 60KB (uncompressed)
  • Released on
  • Suggested by Checker

HeapMemView allows you to view the content of all memory blocks allocated in the heap of the process that you select. This tool can be useful for developers who need to trace memory leaks in their software.

Category:
Runs on:Win2K / WinXP / Vista / Win7 / Win8
Writes settings to: Application folder
Stealth: ? Yes
License: Freeware
How to extract: Download the ZIP package and extract to a folder of your choice. Launch HeapMemView.exe.
What's new?
  • Added 'Automatically Sort On Refresh' option.
  • Fixed the flickering while scrolling the upper pane.

XN Resource Editor Portable v3.0.0.1

billon on 27 Nov 2016
  • 2MB (uncompressed)
  • Released on 2 Dec 2010
  • Suggested by Andrew Lee

XN Resource Editor is a resource editor and PE module explorer. It works on RES, EXE and DLL files. It provides special support for Delphi programs by displaying all the modules that comprise a Delphi program, and letting you edit the properties of the components used on Delphi forms.
XN Resource Editor Portable is a portable wrapper for XN Resource Editor.

Category:
Runs on:WinXP / Vista / Win7 / Win8 / Win10
Writes settings to: Application folder
Stealth: ? Yes
License: MPL/GPL
How to extract: Download the self-extracting EXE and extract to a folder of your choice. Launch XNResourceEditorPortable.exe.
Similar/alternative apps: Resource Hacker
What's new?
  • Compiled with Borland Developer Studio 2006.
  • Unicode resource supported throughout.
  • C Compiler detection for RC include files.
  • New dialog controls support.
Latest comments
Ralph on 2011-02-24 03:13

Yes [Web Site] needs updating to URL in Synopsis: http://www.wilsonc.demon.co.uk/d10resourceeditor.htm
[Download] could point to his zip download : http://www.btinternet.com/~wilsoncpw/xnresourceeditor.zip
rather than an iffy paf

Midas on 2012-07-11 10:12

Entry needs updating. There isn't any mention of a 'Portable Edition' at the download link: there are two downloadables, a 'xn_resourceeditor_setup.exe' (which can be UniExtracted) and a 'xnresourceeditor.zip' -- in the end, the difference between the two is that you get an extra 'readme.txt' inside the '{app}' folder from the first...

See all