It provides so much information about the sample and gives me a wealth of information for me to start building out my report. Whenever I begin analysing a piece of malware, I will always load it into first. How do you verify whether an application is 64-bit capable or if the Data Execution Prevention (DEP) or the Address Space Layout Randomization (ASLR) features are used? Do you want to be sure whether your application uses functions that have been recognized as obsolete, and thus presents a potential security risk for your customer's infrastructure?Ĭategories: application analyzer, EXE inspector, library analysis, analyzer, inspector, executable Download PeStudioīest Vista Download periodically updates pricing and software information of PeStudio full version from the publisher,īut some information may be out-of-date. PeStudio is a tool used for statically analyzing malware and is one of my favourite tools for malware analysis. With PeStudio, you can inspect and thus validate any 32-bit or 64-bit application (*.exe, *.dll, *.cpl, *.ocx, *.ax, *.sys.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |