PEditor 1.7

PEditor 1.7 Screenshot PEditor is a tool for PE (Portable Executable) files.

Developer:   yoda
      software by yoda →
Price:  0.00
License:   Freeware
File size:   0K
Language:   
OS:   Windows Vista (?)
Rating:   0 /5 (0 votes)

PEditor is a tool for PE (Portable Executable) files.

Do a right mouse click and you can terminate a process/module, dump each in 3 ways, view infos about processes/modules and you can load a process/module into the PEditor.

If you select a module that isn't a real module (it has the same filename as its owing process) then PEditor will automatically take the owing process for dumping and freeing/killing.

How to dump/unpack a file:

First load the target file into PEditor and click on break'n'enter. Do a "bpint3" in Softice and click in break'n'enter on RUN. It'll break at the entrypoint. If you're lucky you'll see what you've to enter to restore the first byte of the entrypoint ;).

Now only trace to the depackers exitpoint and enter a "a" and a "jmp eip" at the exitpoint. Then press F5 to exit Softice. Back in PEditor close break'n'enter and click on tasks, dump your target process full.

Kill the process, load the dumped file into PEditor and fix the entrypoint. Optional you can use the realigner of PEditor to minimize the filesize of the dumped file or use the Import Table rebuilder.

Note: PEditor is free for personal use only.

tags the entrypoint  and click  you can  the dumped  dumped file  use the  peditor and  into peditor  process module  owing process  load the  file into  and you  

PEditor 1.7 screenshot


Download PEditor 1.7

 Download PEditor 1.7


Similar software

PEditor 1.7 PEditor 1.7
yoda

PEditor is a tool for PE (Portable Executable) files.

LordPE 1.31 LordPE 1.31
Yoda

LordPE is a utility for system programmers for editing many parts of PE (Portable Executable) files.

Process Modules 1.0 Process Modules 1.0
AW Solutions

Process Modules is a useful utility that will display the loaded modules in a process.

Advanced Process Manipulation 1.1 Advanced Process Manipulation 1.1
Diamond Computer Systems

DiamondCS Advanced Process Manipulation (APM) is an advanced process/module viewer and manipulation utility that allows unique control over target processes by literally becoming a part of them.

ProcX 1.0 ProcX 1.0
Ghost Secutity

ProcX displays all running processes and modules on your systems.

CurrProcess 1.13 CurrProcess 1.13
Nir Sofer

CurrProcess utility displays the list of all processes currently running on your system.

WinProcesses 1.0 WinProcesses 1.0
Digital Fantasy Entertainment

WinProcesses is an easy-to-use utility which allow you to view a lot of information about processes: process' threads, process' modules and many other usable information.

PrcView 5.2.15.1 PrcView 5.2.15.1
Computer Technology, Inc.

PrcView is a process viewer utility that displays detailed information about processes running under Windows.

Chameleon Clock 5.1 Chameleon Clock 5.1
Jury Gerasimov

Chameleon Clock is a desktop clock which purpose is to be useful, user-friendly, and beautiful.

PE Tools 1.5.400 PE Tools 1.5.400
NEOx

This is a fully-functional utility for working with PE/PE +(64bit) files.