Works on: Windows 10 | Windows 8.1 | Windows 8 | Windows 7 | Windows 2012 SHA1 Hash: 54e57f39e8a8f9153931656fee3b5c15e40de509 Size: 622.03 KB File Format: zip
Rating: 1.782608695
out of 5
based on 23 user ratings
Downloads: 250 License: Free
PE Detective is a free software by Daniel Pistelli and works on Windows 10, Windows 8.1, Windows 8, Windows 7, Windows 2012.
You can download PE Detective which is 622.03 KB in size and belongs to the software category File Management. PE Detective was released on 2010-09-27 and last updated on our database on 2017-02-28 and is currently at version 1.2.
Thank you for downloading from SoftPaz! Your download should start any moment now. It would be great if you could rate and share:
Rate this software:
Share in your network:
PE Detective Description
PE Detective can scan single PE files or entire directories (also recursevely) and generate complete reports.
The PE Detective is deployed along with the Signature Explorer, which is an advanced signature manager to check collisions, handle, update and retrieve signatures.
To scan a file is very easy with the PE Detective tool: just drag and drop a file on the interface and press scan. If PE Detective finds multiple results, all of them will be listed in descending priority.
The data for each result shows the signature name, the number of matches (meaning how many bytes in the signature match, wildcards arent counted) and possible comments regarding the signature.
Its, also, possible to perform a directory scan through the PE Detective. This means that every file in that directory will be scanned and listed in the results. The scan can be performed recursevely. As you can see, through the pop-up menu you can generate a complete report of the scanning session.
The PE Detective comes along with the Signature Explorer, an advanced signature manager. This manager can open a signature database (theres one for each supported platform and a platform independent dabatase) and add, modify and delete its signatures. Entire PE Signatures are only used when the Deep Scan option is enabled. Those kind of signatures are scanned through the entire PE.
To retrieve new signatures to add to the database, theres a Signature Retriever utility. This utility retrieves common bytes (at a certain RVA and given a maximum signature lenght) of two or more applications. The default RVA is the application entrypoint.
Update is an easy task. Through the update utility you can update the current loaded signature database online or from file. Theres an option to show only not-already-existing signatures and you can still delete all the items you dont want to add to the database.
The last utility provided by the Signature Explorer is a Collision Checker. Basically, it checks the current loaded database for collisions (meaning already existing signatures).
The check can be done specifying various options. When the scan is completed, already existing signatures are showed in collision groups and each signature has a different colour depending on how it collides with the other signature in its collision group.
You can also delete from the same interface all the signatures which you think of being redundant.
Software
Games
Themes
Wallpapers
DLL
Windows 7 and above
View Screenshots(3)
Comments
Download
Similar Software
Recently Searched
Software Categories
Trending Software
Like Us
