winitor - PEStudio
PEStudio is a unique tool that performs the static investigation of 32-bit and 64-bit executable.

Malicious executable often attempts to hide its malicious behavior and to evade detection. In doing so, it generally presents anomalies and suspicious patterns. The goal of PEStudio is to detect these anomalies, provide indicators and score the executable being analyzed. Since the executable file being analyzed is never started, you can inspect any unknown or malicious executable with no risk.
dfir  security  tools  reversing 
october 2014
Snowman is a native code to C/C++ decompiler
reversing  reverseengineering  tools  decompiler 
october 2014
« earlier      
3ds ajax akamai amazon analysis android anonymity antivirus api appdotnet apple appsec aprs arm art ascii aslr assembly atrix automation av aws baby backdoors backup best binary bios bitcoin blackberry bluetooth boardgames bookmarks bounty bruteforce buffalo bugbounties burp business c cables case cellular challenge challenges cheatsheet chrome chromeos citrix classy cli clickjacking clojure cloud code codereview coffee collaboration comics conference cooking couchdb crack cracking crackmes crossdomain crypto cryptogram cryptography crytography csrf css ctf ctp curl cycript cypherpunk d3100 dat debug debugger debuggerz debugging decompiler defcon deobfuscate design desktop dev development devops dfir diagrams disney django dkim dns dock domains domxss dos dotnet drinks drm dropbox dslr dtrace ebooks ec2 edu education email embedded encryption energy erlang evasion exercise exif exploit exploits facebook fileshare finance fios firewall fitness flash fonts food forensics frequency frida ftdi funny furniture gadgets games gaming gdb gear genymotion gifs gifts git github golang goruck gpg grammar gtd guide guides hacking hackintosh ham hardwarae hardware hardwarehacking hash haskell heartbleed heartburn hearthstone history home hooking hosting hostnames house html5 http https ical ida idapro infosec inspiration ios ios5 iot ipad ipfw iphone irc irssi iso jabber jailbreak japan japanese java javascript jerk jerky keychain kids kindle kiosk lab language laptop launchpad learning lfi life linode linux lion list livecd loaders lockpicking locksport logging logic mac macbook mainframe mallory malware manuals math memory metadata metasploit military minecraft mitm mkv mobile mobileappsec mobilesec mobilesubstrate mobility mobisec monitoring motorola msrtc multicsrf music mymedia mysql netflix netsec network networking nfc nginx node noise nutrition obfuscation objectivec ocr oldschool online openvpn osint osx packer paleo panda parenting password passwords pastebin pc pdb pdf pentest pentesting pgp phishing photography photoshop piano pickle pinboard pineapple pl2303 playbook podcast pokemon policy portal portforwarding ports postfix powershell presentation presentations presents primal privacy programming progreamming propeller proxy python rack radio raspberrypi rce rdp re reading recipe recipes recon reddit redteam reference regex registration research responses reverse reverseengineering reversing risk roast roku root router rtlsdr ruby safety saml sandbag scanner screencast screenshot sdlc sdr search secops securecode security server setup shell shellcode shells shmoocon shows soap sound spam spanish spoof sql sqli sqlite ssd ssh ssl ssrf staticanalysis status stickers storage stream stretching stripectf sublime sudo survival swf symlink sysadmin syslog talks team technology testing tf2 theos thickclient thickclients thug ticket todo tool tools training travel tunnel tutorial tutorials tv tweak twitter uart ubertooth ubuntu unix update usb valve video videos vim virtualbox virtualmachines vm vmware voip volatility vpn vps waf wallpaper watch weather web webapp webappsec webdesign webdev websec webservice webservices websockets whois wifi windows windows8 wings winrt wireless wordlist workout wp7 writeups xbmc xbox360 xcode xmas xml xoom xp xsf xss xxe yaesu znc

Copy this bookmark: