PeStudio 3.42

Tweet

How do you verify whether an application is 64-bit capable or if the Data Execution Prevention (DEP) or the Address Space Layout Randomization (ASLR) features are used? Do you want to be sure whether your application uses functions that have been recognized as obsolete, and thus presents a potential security risk for your customer´s infrastructure?
All these questions, and many more, can be answered easily with PeStudio!
With PeStudio, you can inspect any 32-bit or 64-bit application (*.exe, *.dll, *.cpl, ocx, *.ax, *.sys, ...) WITHOUT starting it!
PeStudio shows you much more details, like:

• all libraries that are used by an application.
• all functions that are imported by an application.
• all functions (also anonymous) that are exported by an application.
• all functions that are forwarded to other libraries.
• Obsolete Functions that are exported and imported by an application
• whether the Data Execution Prevention (DEP) Windows security mechanism is used.
• whether the Address Space Layout Randomization (ASLR) Windows security mechanism is used.
• whether Structured Exception Handling - SEH Windows security mechanism is used
• whether some sections are compressed, and more...

What's New in version 3.42:

• Make the Interface file PeParser.h public
• Added offset (hint) of exported functions 

Publisher:Visit Website 
OS: Win 98/ME/2000/XP/2003/Vista/7
Download Now  ( 311.3KB )