Welcome![Sign In][Sign Up]
Front-page it | Collect it | [中国-简体中文]
FAQ Fav
Location:
Search - pe-scan

Search list

[File OperatePE Scan 3.31

Description: 查看DLL文件的VC代码-view vc code about DLL files
Platform: | Size: 71243 | Author: 请不要用公用帐号上载 | Hits:

[OS programpe文件结构

Description: 查看PE文件的工具 方便 学习PE文件结构-View PE document tools facilitate learning PE file structure
Platform: | Size: 367616 | Author: mail0001 | Hits:

[File OperateFolderCleaner_src

Description: 工具原理: 1·遍历文件夹,扫描“是PE&会显示图标”的文件,选择其ICON_GROUP的第一个图标资源作判断 2·枚举该图标里的所有尺寸的图片,与Pattern中的相应尺寸的图片 比较每个像素的RGB,容差在某个范围内,则认为HIT 3·当该图标的某个尺寸的图片的所有像素HIT的百分比在某个范围内,则认为图标HIT,即认为是文件夹图标病毒 优势: 相比 通过提取文件CRC来判断一个文件夹病毒,通过图标来判断更为可控,更为迅速。而且,调整好几个阀值之后,理论上不会误报。-Tools principles: 1 · Traverse Folder to scan " is the PE & will show the icon" document, select the first icon in its ICON_GROUP resources to determine 2 · enumerate all the dimensions of the icon inside the picture, and Pattern in the corresponding size of the picture compares each pixel RGB, in a context of tolerance, then that HIT 3 · When the icon image to a size of HIT percentage of all pixels within a confined area, then that icon HIT, which is a folder icon that viruses advantage: compared to extract the files through the CRC to determine if a folder virus, through the icon to determine a more controllable, more rapidly. Moreover, the adjustment of several thresholds, the theory is not false positives.
Platform: | Size: 2541568 | Author: 周荣誉 | Hits:

[ARM-PowerPC-ColdFire-MIPSSTM32-7SEG-LED-SCAN

Description: 8位数码管动态扫描显示实验(显示不用库函数) *显示用指针直接访问GPIO端口的输出寄存器,形式GPIOD->ODR *延时delay_nms(5)时,显示不闪烁 *74HC138 A--P2.2--PE.0 B--P2.3--PE.1 C--P2.4--PE.2 *74HC573 D0~D7---PD[0..7] LE---PE.3 *by 追梦 2011-4-3-8-bit digital dynamic scan showed that the experimental (show no library function)* Display a pointer to directly access GPIO port output register, form GPIOD-> ODR* delay delay_nms (5), the display does not blink* 74HC138 A- P2. 2- PE.0 B- P2.3- PE.1 C- P2.4- PE.2* 74HC573 D0 ~ D7--- PD [0 .. 7] LE--- PE.3* by Dream 2011-4-3
Platform: | Size: 538624 | Author: 杜运福 | Hits:

[Driver Developssmon

Description: VT Debugger with Open Source 这个是拿BluePill的代码作为Base,硬改成调试器。 构思到代码成型花掉我一年时间,幸亏公司活少,给了我充足的时间。 这个是摘自本人的简历内容。 XP系统的汇编级双机调试器,同时可以调试内核线程和普通线程。 Bypass 业界全部的AntiDebug系统。 Builtin with below Functions. 1. AMD VT System, 2. Internal MMU System, 3. PE Loader, 4. Kernel Socket, 5. BTS Tracer. 6. Bp without CC(int 3) code. 7. PE level Script. 8. PDB support 9. Process Memory Scan
Platform: | Size: 1258496 | Author: ljh | Hits:

CodeBus www.codebus.net