Location:
Search - Delphi pe
Search list
Description: 这个小软件通过在可执行文件(.exe)的尾部添加一个新节(Section),并且修改PE的入口地址,使可执行文件在运行时,跳出一个输入密码的对话框,从而实现了简单的加密。-small software in executable files (. Exe) to the tail adding a new section (Section), and amend the PE import addresses, so that the executable file is run, jump out of a password dialog box, thus achieving a simple encryption.
Platform: |
Size: 413696 |
Author: 梁伟 |
Hits:
Description: 1不是原创
2可以对文件进行pe结构的解析
3可以对取得的内容进行保存-two originality is not a document can be pe analytic structure of the three can be made to the content preservation
Platform: |
Size: 645120 |
Author: 素宾 |
Hits:
Description: 一个PE文件分析器,可分析Win32文件格式,列出导入导出表和程序的其它信息-a PE File Analyzer, analysis Win32 file format, Import and Export of listed tables and other information procedures
Platform: |
Size: 19456 |
Author: |
Hits:
Description: 这是一个编辑/查看PE文件导出表的工具。利用它可以方便的对PE文件的导出表进行增、删、改的操作,现在它还可以用于给没有导出表的文件添加导出函数。
这个工具除了PE diy外,通过为导出函数添加Forward信息等方法还可以实现函数hook,dll注入等功能。-This is an edit/view PE file Export Table tool. It can be convenient to use for PE files by exporting table, delete, change operations, and now it can be used to export the table did not add export function. PE diy this tool in addition to outside, through the Export function to add information such as Forward method can also achieve the function hook, dll injection functions.
Platform: |
Size: 96256 |
Author: 董林 |
Hits:
Description: 最小的Delphi System.pas包,通过这个文件可以直接编译到最小969字节的PE文件。-Delphi System.pas the smallest package, the adoption of the document can be directly compiled to a minimum 969-byte PE file.
Platform: |
Size: 4096 |
Author: llonghoren |
Hits:
Description: Delphi Tiny_Shell 3k (普通版本+端口复用穿防火墙)
Tiny_Shell 0.1 (普通版本)By Anskya
某天精神好了一点的时候写的,使用KOL+删除多余资源+清除PE重定位表+FSG压缩体积只有3k.
感谢那些提供Code和教程的GG and JJ们~~ ^_^~部分代码直接翻译C的shell
Tiny_Shell.dpr 工程时最简单的shell采用匿名单管道设计,本来打算不用管道直接写的,但是怕连目录都无法显示所以还是用了单管道,有个BUG-很明显的那种-就是,输入命令看不见但是可以运行,有兴趣自己改成双管道就可以了(如果不怕自己麻烦部使用管道直接将Socks获取的信息直接写入进程,也可以返回数据的^_^).
Platform: |
Size: 13312 |
Author: byongs |
Hits:
Description: PE文件分析结构,-Analysis of PE file structure,
Platform: |
Size: 146432 |
Author: qsn |
Hits:
Description: 为PE文件增加任意名称,任意大小的空白区段。是DELPHI的原代码,自己准备编写壳时的一个练习。-PE file for the increase in arbitrary name, of any size blank section. Is DELPHI original code, its own shell at the time of the preparation of a practice.
Platform: |
Size: 189440 |
Author: bbc9527 |
Hits:
Description: Anskya Polymorphic Packer V 1.3
Code By Anskya Thank:Aphex,Madshi,Gregory,~LOM~
Big Thank:Aphex,sforever,zxxfox,AngleAngel
GST Http://www.Godexp.com
Web Http://www.Anskya.net
Explanation:
Produce and encrypt the key with grade, the additional data are measured
the file protect of PE is compressed.-Anskya Polymorphic Packer V 1.3Code By Anskya Thank: Aphex, Madshi, Gregory, ~ LOM ~ Big Thank: Aphex, sforever, zxxfox, AngleAngelGST Http:// www.Godexp.comWeb Http:// www.Anskya.netExplanation:Produce and encrypt the key with grade, the additional data are measuredthe file protect of PE is compressed.
Platform: |
Size: 505856 |
Author: jackson |
Hits:
Description: List PE-data of EXE-files:
-Dump of DOS file header
-Dump of PE file header
-Dump of PE optional file header
Platform: |
Size: 191488 |
Author: progfin2008 |
Hits:
Description: Morphine v2.7,程序压缩源码,保护程序不被恶意修改-Morphine is very unique application for PE files encryption. Unlike
other PE encryptors and compressors Morphine includes own PE loader which
enables it to put whole source image to the .text section of new PE file. This
one is very powerful because you can compress source file with your favourite
compressor like UPX and then encrypt its output with Morphine. Another powerful
thing here is polymorphic engine which always creates absolutely different
decryptor for the new PE file. This mean if your favourite trojan horse is
detected by an antivirus you can encrypt it with Morphine. You will not get
the virus alert again.
Platform: |
Size: 31744 |
Author: hack |
Hits:
Description: 本书是一本介绍Windows核心技术及高级技巧的专著。从系统内核编程出发,使用大量的例子帮助读者理解这些编程技术,讲述了线程同步及隐藏、系统钩子深入分析、读写物理磁盘的关键技术、读写物理内存和其他进程内存的核心技术、Windows 9x下调用16位实模式和保护模式代码的核心技术、直接读写端口技术、可执行文件加壳的技巧、PE结构分析、Ring0的实现、Windows API截取技术、屏幕取词技术等方面的内容。全书对热点源代码进行了深入剖析和讲解,同时本书汇聚了作者利用Soft-ICE跟踪调试经验,作者多年的编程心得和技巧一览无遗。随书附送的光盘提供了书中涉及的程序源代码。-This book is an introduction Windows core technology and advanced techniques monographs. Starting from the system kernel programming, using a large number of examples to help readers understand the programming techniques described thread synchronization and hidden, system hooks in-depth analysis of the physical disk read and write the key technology, reading and writing physical memory and other processes memory the core technology, Windows 9x next call 16-bit real mode and protected-mode code, the core technology, direct read and write port technology, executable packers skills, PE structural analysis, Ring0 realization, Windows API interception technology, Capture Characters from Screen Technology and other aspects. The book on the hot source code in-depth analysis and explanation, while the book brings together authors tracked the use of Soft-ICE debugging experience, the author many years of programming experience and skills at a glance. CD-ROM supplied with the book provides the p
Platform: |
Size: 49120256 |
Author: 龙文 |
Hits:
Description: Tiny_Shell 0.1 (普通版本)By Anskya
某天精神好了一点的时候写的,使用KOL+删除多余资源+清除PE重定位表+FSG压缩体积只有3k.
感谢那些提供Code和教程的GG and JJ们~~ ^_^~部分代码直接翻译C的shell
Tiny_Shell.dpr 工程时最简单的shell采用匿名单管道设计,本来打算不用管道直接写的,但是怕连目录都无法显示所以还是用了单管道,有个BUG-很明显的那种-就是,输入命令看不见但是可以运行,有兴趣自己改成双管道就可以了(如果不怕自己麻烦部使用管道直接将Socks获取的信息直接写入进程,也可以返回数据的^_^).
最好不要这样作很麻烦的说。身体不好要睡觉了,就不多写了.
Tiny_Shell2 0.1(端口绑定版本)By Anskya
Tiny_Shell2.dpr 从0.1普通版修改的~只修改一点点Code~呵呵懒得写代码
端口绑定原理是从C的shellcode Debug出来的^_^
默认是绑定80端口(如果没有找到这个端口就自己创建80端口。。。。),IP约束中的IP是为了防止任何人都连接上shell,这个地方可以改进一下,这个仅仅是演示版~要与实际开发结合还有好多问题存在。
-Tiny_Shell 0.1 (normal version) By Anskya
One day a little better when the spirit of writing, using KOL+ delete the extra resources to clear the PE re-positioning table++ FSG compressed size of only 3k.
Grateful to those that provide Code and tutorials for GG and JJ were ~ ~ ^ _ ^ ~ part of the code is a direct translation of C-shell
Tiny_Shell.dpr works most simple shell use of anonymous single-piping design, originally intended to write without the direct channels, but the fear of even directories can not be displayed so it is still using a single pipe, there s the kind of BUG-obvious- that is, enter command can not see but can run, are interested in their own dual-channel can be changed to the (if not afraid of their own troubles piped directly to the Socks department obtained information directly into the process, but also can return the data ^_^).
Best not to do so cumbersome to say. Poor health and going to sleep, no more writing.
Tiny_Shell2 0.1 (port bound versi
Platform: |
Size: 19456 |
Author: dangyujia |
Hits:
Description: 现在的软件大都加了壳,给破解汉化带来非常大的不便。PEiD 能够侦测出几乎所有的壳,其数量已超过 470 种 PE 文件的加壳类型和签名,新版本增加了命令行的操作支持,使用非常方便。经分析是目前各类查壳工具中性能最强大的一款。另外还可识别出 EXE 文件是用什么语言编写的,比如:VC++、Delphi、VB 或 Delphi 等。-Most of today' s software, added a shell to break caused great inconvenience finished. PEiD able to detect almost all of the shell, their number has more than 470 kinds of packers PE file types and signatures, the new version added support for command line operation, use very convenient. The analysis is the performance of various types of investigations the most powerful tool in the shell of a. It may also identify the EXE file is written in what language, for example: VC++, Delphi, VB, or Delphi and so on.
Platform: |
Size: 2719744 |
Author: 老袁 |
Hits:
Description: AMProtector - advanced PE Packer with LZMA compression and strong AMPRNG encryption.
Platform: |
Size: 84992 |
Author: Alexander Myasnikov |
Hits:
Description: 分析PE文件,主要是看PE资源,具体功能大家自己测试吧。-check PE files,the res of file
Platform: |
Size: 668672 |
Author: 土豆 |
Hits:
Description: exe文件完整性自校验,利用内存流读入自身exe文件PE头部空白处的四个字节,程序编译后需要用winhex软件将CRC值写入PE头部-exe file integrity self-checking, use the memory stream to read its own exe file PE header of four bytes of space, the program compiled the software will need to use winhex to write PE header CRC values
Platform: |
Size: 591872 |
Author: sine123 |
Hits:
Description: wipe dos header PE File
Platform: |
Size: 2048 |
Author: vionanda |
Hits:
Description: library for PE 32 library
Platform: |
Size: 8192 |
Author: vionanda |
Hits:
Description: Infecrot PE CODE 感染PE文件的代码,DELPHI编写-Infecrot PE CODE PE files infected code, DELPHI writing
Platform: |
Size: 6144 |
Author: 王冰 |
Hits: