策略引擎>> dump2exe>> 返回
项目作者: whikernel

项目描述 :
Extract PE binaries from dumps
高级语言: C
项目地址: git://github.com/whikernel/dump2exe.git
创建时间: 2021-02-14T19:08:28Z
项目社区:https://github.com/whikernel/dump2exe
开源协议:
下载


dump2exe

Extract Win executables from dumps, display some basic information about them.
Why not use libpe ? Mostly for education purpose :) !

Compilation

  1. Install the following (apt-based): apt install libssl-dev
  2. Compile : make
  3. Run ./bin/dump2exe --help

Usage

  1. ./bin/dump2exe mem.dmp                  // Display info 
  2. ./bin/dump2exe -e mem.dmp               // Extract and display info
  3. ./bin/dump2exe -e -o 123456 mem.dmp     // Display info and extract bin at offset 123456