OpenRCE

📚 OpenRCE is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.

About Articles Book Store Distributed RCE Downloads Event Calendar Forums Live Discussion Reference Library RSS Feeds Search Users What's New

Customize Theme

Topic created on: August 28, 2007 04:05 CDT by neerajsathe .

Please suggest me any free Portable Executable viewer.

Paolo		August 28, 2007 05:33.55 CDT
There is plenty of tools to do what you want. You can choose among many: * the free version of IDA (do not remember the URL to this though) * the HTE editor (http://hte.sourceforge.net) * PE Browse professional (http://www.smidgeonsoft.prohosting.com/pebrowse-pro-file-viewer.html) * if you're into scripting, you can give a chance to Ero's PEFile + PyDasm * http://biew.sourceforge.net/ and many others... Just experiment and choose your favourite ;)

frankboldewin		August 28, 2007 06:56.22 CDT
http://petools.org.ru/petools.shtml http://www.heaventools.com/download/pexsetup.exe

TQN		August 28, 2007 09:18.35 CDT
http://www.magma.ca/~wjr/

pedram		August 28, 2007 11:25.08 CDT
Go programmatic with PEfile: http://dkbza.org/pefile.html

tnagareshwar		August 28, 2007 13:16.30 CDT
I found PEditor to be light and very good. You can just right click on exe/dll/sys file and open it in PEditor and view all PE related information such as sections, import/export directories. You can even modify these information directly. http://www.softpedia.com/get/Programming/File-Editors/PEditor.shtml

abuse007		August 29, 2007 01:06.29 CDT
I found NTCore's Explorer Suite pretty good. http://www.ntcore.com/exsuite.php

simpleuser		August 31, 2007 02:56.45 CDT
Hiew/Hacker's view much more than a pe editor but still a full pe editor. http://www.hiew.ru/ it's not actually free but the demo version is already good enough.

Usman		February 12, 2010 04:22.00 CST
Hello, Hello, I need to extract all non-exported (global or member functions of class) methods of certain DLL. GetProcAddress always takes decorated functions of exported functions and returns function pointers against these. Is it possible to look up non exported functions of certain DLL.(PE Parsing to me only give access to EXPORT_DIRECTORIES and IMPORT_DIRECTORIES) How.?? Regards Muhammad Usman Khalil

takerZ		February 12, 2010 13:15.05 CST
No, it's not possible just using os provided features. You have to open the file, separate code from data, disassemble code and detect all function entries, which is rather difficult task indeed. P.S. This's not the thread for such a question.

Usman		February 15, 2010 00:59.51 CST
> takerZ: No, it\'s not possible just using os provided features. You have to open the file, separate code from data, disassemble code and detect all function entries, which is rather difficult task indeed. > P.S. This\'s not the thread for such a question. Where should I post this question (regarding reverse engineering and debuggers) I thought that Debuggers community is the best one to post.

Note: Registration is required to post to the forums.

There are 31,328 total registered users.

Imagery

SoySauce Blueprint
Jun 6, 2008