Exetools  

Go Back   Exetools > General > Community Tools

Notices

Reply
 
Thread Tools Display Modes
  #16  
Old 11-30-2013, 13:18
sope2001
 
Posts: n/a
Nice to see the detecting tools getting updates. Kudos to all of you!
Reply With Quote
  #17  
Old 01-14-2014, 22:29
kjms's Avatar
kjms kjms is offline
VIP
 
Join Date: Jun 2011
Posts: 191
Rept. Given: 184
Rept. Rcvd 320 Times in 79 Posts
Thanks Given: 15
Thanks Rcvd at 74 Times in 30 Posts
kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399
Download DIE ver. 0.80 (Windows)

Plugin for HIEW (author exet0l)

Plugin for CFF Explorer (author exet0l)
Reply With Quote
The Following 7 Users Gave Reputation+1 to kjms For This Useful Post:
alekine322 (01-15-2014), an0rma1 (02-10-2014), chessgod101 (01-14-2014), h8er (01-15-2014), nikkapedd (01-15-2014), sendersu (01-15-2014), zeuscane (01-14-2014)
  #18  
Old 01-15-2014, 00:17
nikkapedd nikkapedd is offline
VIP
 
Join Date: Mar 2011
Location: Somewhere In Europe
Posts: 219
Rept. Given: 275
Rept. Rcvd 148 Times in 63 Posts
Thanks Given: 161
Thanks Rcvd at 185 Times in 82 Posts
nikkapedd Reputation: 100-199 nikkapedd Reputation: 100-199
kjms, do you know how to make working the plugin under CFF Explorer..???
Thanks in advance...
Reply With Quote
  #19  
Old 01-15-2014, 01:19
kjms's Avatar
kjms kjms is offline
VIP
 
Join Date: Jun 2011
Posts: 191
Rept. Given: 184
Rept. Rcvd 320 Times in 79 Posts
Thanks Given: 15
Thanks Rcvd at 74 Times in 30 Posts
kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399
Copy the DIE_Plugin.dll & die folder,place the files here
C:\Program Files\NTCore\Explorer Suite\Extensions\CFF Explorer
Reply With Quote
  #20  
Old 01-15-2014, 02:12
alfares alfares is offline
Friend
 
Join Date: Dec 2013
Posts: 14
Rept. Given: 0
Rept. Rcvd 4 Times in 2 Posts
Thanks Given: 6
Thanks Rcvd at 19 Times in 8 Posts
alfares Reputation: 4
Quote:
Originally Posted by giv View Post
Is important that the developement continue.
yes i think new Versions will be soon
Reply With Quote
  #21  
Old 02-05-2014, 19:51
kjms's Avatar
kjms kjms is offline
VIP
 
Join Date: Jun 2011
Posts: 191
Rept. Given: 184
Rept. Rcvd 320 Times in 79 Posts
Thanks Given: 15
Thanks Rcvd at 74 Times in 30 Posts
kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399
Detect It Easy 0.81
Download: http://ntinfo.biz/index.php/detect-it-easy
Source: http://n10info.blogspot.nl/

[+] Fixed some bugs
[+] Improved definition VMprotect for dll (DenCoder)
[+] Fixed a bug with processing export some files (deniskore)
[+] Improved definition Safengine Shielden (DimitarSerg)
[+] Improved definition Starforce (Slinger)
[+] Improved detection of new versions of Armadillo (Dazz)
[+] Improved definition. ANDpakk2 (4kusNick)
Reply With Quote
The Following User Gave Reputation+1 to kjms For This Useful Post:
an0rma1 (02-10-2014)
  #22  
Old 02-10-2014, 04:30
LostandFound LostandFound is offline
Friend
 
Join Date: Apr 2013
Posts: 15
Rept. Given: 1
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 0
Thanks Rcvd at 1 Time in 1 Post
LostandFound Reputation: 0
This is a very useful tool indeed.
Reply With Quote
  #23  
Old 02-10-2014, 16:56
an0rma1 an0rma1 is offline
Friend
 
Join Date: Feb 2002
Posts: 186
Rept. Given: 105
Rept. Rcvd 25 Times in 16 Posts
Thanks Given: 314
Thanks Rcvd at 61 Times in 30 Posts
an0rma1 Reputation: 25
very nice idea and very good implemented, i am thinking about adding all dos exes protectors as ids, old stuff is still interesting for some of us
Reply With Quote
  #24  
Old 02-11-2014, 05:05
sendersu sendersu is offline
VIP
 
Join Date: Oct 2010
Posts: 839
Rept. Given: 324
Rept. Rcvd 216 Times in 110 Posts
Thanks Given: 168
Thanks Rcvd at 349 Times in 196 Posts
sendersu Reputation: 200-299 sendersu Reputation: 200-299 sendersu Reputation: 200-299
Quote:
Originally Posted by an0rma1 View Post
very nice idea and very good implemented, i am thinking about adding all dos exes protectors as ids, old stuff is still interesting for some of us
Are you sure it'll read DOS MZ?
Reply With Quote
  #25  
Old 02-23-2014, 18:01
an0rma1 an0rma1 is offline
Friend
 
Join Date: Feb 2002
Posts: 186
Rept. Given: 105
Rept. Rcvd 25 Times in 16 Posts
Thanks Given: 314
Thanks Rcvd at 61 Times in 30 Posts
an0rma1 Reputation: 25
Quote:
Originally Posted by sendersu View Post
Are you sure it'll read DOS MZ?
hi,
yes, look here http://ntinfo.biz/files/How%20to%20create%20signatures.pdf

Code:
Currently the program defines the following types: 
• MSDOS executable files MS-DOS 
• PE executable files Windows 
• ELF executable files Linux 
• Binary all other files
Reply With Quote
  #26  
Old 03-06-2014, 03:20
wilson bibe wilson bibe is offline
VIP
 
Join Date: Nov 2012
Posts: 437
Rept. Given: 474
Rept. Rcvd 439 Times in 180 Posts
Thanks Given: 340
Thanks Rcvd at 154 Times in 95 Posts
wilson bibe Reputation: 400-499 wilson bibe Reputation: 400-499 wilson bibe Reputation: 400-499 wilson bibe Reputation: 400-499 wilson bibe Reputation: 400-499
DIE V.0.82

Quote:
Download:
http://ntinfo.biz/index.php/detect-it-easy
Quote:
Changelog:
[+] Fixed some bugs
[+] Optimized library for working with signatures
[+] Add information on the armadillo (Dazz)
[+] DotFix NiceProtect detection 2.5 (Dazz)
[+] Added .NET protectors (ajax)
[+] Improved determination Y0da's Cryptor (DICI BF)
[+] Fixed bug with IA-64 detektom files (A.S.L)
[+] Made an active link "Bugreport (A.S.L)
[+] Fixed bug editing in HEX-Editor (hypn0)
Reply With Quote
The Following 6 Users Gave Reputation+1 to wilson bibe For This Useful Post:
alekine322 (03-07-2014), Dreamer (03-06-2014), kjms (03-06-2014), TechLord (03-06-2014), val2032 (03-30-2014), zeuscane (03-06-2014)
  #27  
Old 03-24-2014, 15:08
kjms's Avatar
kjms kjms is offline
VIP
 
Join Date: Jun 2011
Posts: 191
Rept. Given: 184
Rept. Rcvd 320 Times in 79 Posts
Thanks Given: 15
Thanks Rcvd at 74 Times in 30 Posts
kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399 kjms Reputation: 300-399
DIE V.0.83
Code:
http://ntinfo.biz/index.php/detect-it-easy 
Change log:
[+] Fixed some bugs
[+] Added new MACH-O (executable Mac OS)
[+] Improved displaying graphics entropy (void)
[+] Fixed bug with incorrect output time when scanning folders (hypn0)
[+] Fixed bug with incorrect output when scanning a folder path (hypn0)
[+] Added a configuration file for the console version (hypn0)
[+] Fixed bug with incorrect display of TLS callback in PE + (deniscore)
Reply With Quote
The Following 4 Users Gave Reputation+1 to kjms For This Useful Post:
alekine322 (03-25-2014), MarcElBichon (03-30-2014), val2032 (03-30-2014), wilson bibe (03-24-2014)
  #28  
Old 03-30-2014, 03:46
val2032 val2032 is offline
Friend
 
Join Date: Apr 2010
Posts: 31
Rept. Given: 26
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 54
Thanks Rcvd at 14 Times in 9 Posts
val2032 Reputation: 1
This is a MUST HAVE tool...
Reply With Quote
  #29  
Old 03-30-2014, 19:50
giv's Avatar
giv giv is offline
VIP
 
Join Date: Jan 2011
Location: Romania
Posts: 1,655
Rept. Given: 802
Rept. Rcvd 1,282 Times in 560 Posts
Thanks Given: 213
Thanks Rcvd at 545 Times in 229 Posts
giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299 giv Reputation: 1100-1299
Quote:
Originally Posted by val2032 View Post
This is a MUST HAVE tool...
Not quite.
Every "tool" of this kind have his own good/bad stuff compared to the "concurrence".
Reply With Quote
  #30  
Old 03-31-2014, 00:26
Carbon Carbon is offline
VIP
 
Join Date: Sep 2013
Posts: 113
Rept. Given: 7
Rept. Rcvd 189 Times in 48 Posts
Thanks Given: 0
Thanks Rcvd at 58 Times in 18 Posts
Carbon Reputation: 100-199 Carbon Reputation: 100-199
Let's hope the author will make it open source or it will DIE like PEiD
__________________
My blog: https://ntquery.wordpress.com
Reply With Quote
Reply

Tags
detect-it-easy, die

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Detect It Easy 2.0 hors Community Tools 14 10-17-2019 22:16
Using RtlAdjustPrivilege to detect debugger. Insid3Code Source Code 2 03-05-2015 13:35
Detect VirtualPC or VMWARE [ASM] taos General Discussion 5 12-08-2004 07:29
Another way to detect OllyDbg and another debugger TQN General Discussion 2 08-03-2004 09:12


All times are GMT +8. The time now is 03:41.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX
( 1998 - 2020 )