All Questions
Tagged with pe windows-10
6
questions
1
vote
0
answers
44
views
PE Format - How can I delete IMAGE_IAT_DIRECTORY and the app still runs fine?
I’m doing a small research regarding PE files and while I drilled every related question or the documentation itself I couldn’t explain this issue.
Why can I go to CFF explorer or some other PE ...
- 133
0
votes
0
answers
3k
views
How to generate exe from compiled Python files?
I have extracted compiled files from exe (executable in windows) using
PyInstaller Extractor script.
In Resultant folder, i have got was pyc files bundled in pyz folder.
Then I decompiled files (...
- 21
0
votes
0
answers
30
views
How to retrace Database Changes from a Software
i need to retrace database changes by an specific application.
The database is really big(~8GB) and contains over 300 tables, and some of the tables have > 100 columns. Another Problem is, that the ...
- 1
2
votes
2
answers
3k
views
.00cfg section in the PE file
What's that .00cfg section that is being added by Visual Studio 2017
to PE32+ binary files (for x64 builds)? I'm assuming it stands for
"Control Flow Guard" section. It is relatively small and mostly ...
- 1,711
2
votes
1
answer
223
views
How are __argc and __wargv globals exported from a 64-bit PE file compiled with Visual Studio?
I need to inject my code into a 64-bit process. I'm wondering, how can I access __argc and __wargv global variables once in the injected process?
Are they always present at a static/preset address?
- 1,711
2
votes
5
answers
13k
views
Run PE File - (Executable) From Memory
Would be grateful for your suggestion.Trying to run a 32/64bit on (Windows 10- 64 bit /Visual studio) program which tries to run an executable from memory.This is for my learning purpose.
#include &...
- 21