SabreTools/BinaryObjectScanner
1
0
Fork 0
mirror of https://github.com/SabreTools/BinaryObjectScanner.git synced 2026-02-14 13:46:03 +00:00
Code Issues 295 Packages Projects Releases 20 Wiki Activity
1,025 Commits 1 Branch 67 Tags
64334d72ea0daaf6e3ac8a4debcb63371bcfd513
Commit Graph

1025 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Matt Nadareski
64334d72ea Improve SolidShield detection 
- Add new SolidShield executable and file checks.
- Fix false positives in file name checks due to not using a directory separator in the check.
- Add a few notes and reorganize slightly.
 2022-12-02 15:02:45 -08:00
Matt Nadareski
a915980187 Improve SafeDisc detection 
- Add support for detecting 4.60.000's drvmgt.
- Add version checks for Diag.exe to remove one case of "SafeCast/SafeDisc" ambiguity.
 2022-12-02 14:59:26 -08:00
Matt Nadareski
af882fa588 Properly differentiate between Code-Lock and CopyLok (TheRogueArchivist) 2022-12-02 14:56:08 -08:00
Matt Nadareski
7fcaa16835 Add first Themida check (TheRogueArchivist) 2022-12-02 14:52:28 -08:00
Matt Nadareski
4d640f3cf2 Add Wrapper skeleton project 2022-12-02 14:44:06 -08:00
Matt Nadareski
25d495b1d0 ASN.1 OID parsing (nw) 2022-12-02 14:18:15 -08:00
Matt Nadareski
7fd936c4a8 Handle empty resource name strings 2022-12-02 14:15:50 -08:00
Matt Nadareski
fe753fc4fd Try to fix null resource types issue 2022-12-02 14:15:44 -08:00
Matt Nadareski
0a4763fcc1 Fix PE dialog item printing 2022-12-02 14:15:37 -08:00
Matt Nadareski
e281faf664 Add first attempt at PE certificate parsing 2022-11-12 21:56:24 -08:00
Matt Nadareski
dcb291c1c6 Disable printing raw PE cert data 2022-11-11 16:23:25 -08:00
Matt Nadareski
ecd1c93bb9 Add PE message resource printing, fix parsing 2022-11-11 16:20:17 -08:00
Matt Nadareski
eeb555a6ce Add PE message resource data to parser 2022-11-11 15:52:05 -08:00
Matt Nadareski
27d53abd10 Add PE message resource models 2022-11-11 15:41:37 -08:00
Matt Nadareski
91eef55173 Fix tiny formatting issue 2022-11-11 15:33:41 -08:00
Matt Nadareski
f9e1518da6 Add PE menu resource reading and writing 2022-11-11 15:31:00 -08:00
Matt Nadareski
5b974260cc Add PE extended dialog templates 2022-11-11 14:22:53 -08:00
Matt Nadareski
554374b710 Add PE dialog template extended 2022-11-11 14:12:03 -08:00
Matt Nadareski
475669ac1b Add PE standard dialog parsing and writing 2022-11-11 13:56:23 -08:00
Matt Nadareski
623d1e6a40 Invert PE "if" logic where possible 2022-11-11 10:08:15 -08:00
Matt Nadareski
08fa4a997f Fix PE resource data entry printing 2022-11-11 09:58:50 -08:00
Matt Nadareski
4e21cf8494 Make PE RVA checks simpler 2022-11-11 09:58:19 -08:00
Matt Nadareski
2ebbda6852 Don't trust PE sections 2022-11-10 23:38:59 -08:00
Matt Nadareski
010a6d6e42 Safeguard all PE virtual address uses 2022-11-10 23:06:21 -08:00
Matt Nadareski
3b1481879a Fix PE debug table parsing 2022-11-10 22:39:10 -08:00
Matt Nadareski
3ddcc3884b Fix PE printing typo 2022-11-10 22:23:36 -08:00
Matt Nadareski
260ab1ec89 Safeguard PE invalid virtual addresses 2022-11-10 22:19:58 -08:00
Matt Nadareski
69803a999f Fix PE virtual address for section-aligned RVAs 2022-11-10 22:09:58 -08:00
Matt Nadareski
d4a75ed871 Reorganize PE notes for delay-load 2022-11-10 21:41:42 -08:00
Matt Nadareski
7394f14218 Add missing PE notes for sections 2022-11-10 21:38:52 -08:00
Matt Nadareski
23cd7b9ebd Add note for PE .drectve section 2022-11-10 21:32:01 -08:00
Matt Nadareski
477cfee78e Add PE debug section printing 2022-11-10 21:29:17 -08:00
Matt Nadareski
750cecfdaf Add PE partial debug table parsing 2022-11-10 21:24:28 -08:00
TheRogueArchivist
32a28fba32 Add more checks for Rainbow Sentinel (#171) 
* Add more checks for Rainbow Sentinel.

* Make comments more consistent.

* Add more notes on versions/
 2022-11-10 16:23:10 -08:00
Matt Nadareski
fe926cbf9a Rewrite PE accelerator table extension 2022-11-10 13:09:23 -08:00
Matt Nadareski
d18e65ca6c Add PE debug directory skeleton, notes 2022-11-10 12:57:41 -08:00
Matt Nadareski
ec67ca605c Fix PE virtual directory size issues 2022-11-10 12:57:19 -08:00
Matt Nadareski
9cb3c963a1 Add PE .sxdata section notes 2022-11-10 12:42:34 -08:00
Matt Nadareski
8a4caf82bb Add PE .coremeta section note 2022-11-10 12:40:18 -08:00
Matt Nadareski
7a5941cfa9 Add PE import table printing 2022-11-10 12:16:48 -08:00
Matt Nadareski
690c49ae1f Fix PE import table parsing 2022-11-10 11:58:46 -08:00
Matt Nadareski
c77c095893 Add initial PE import table parsing 2022-11-10 11:31:06 -08:00
Matt Nadareski
98ddc65fa2 Add PE import table to model 2022-11-10 10:10:12 -08:00
Matt Nadareski
41a7c71b7d Fix PE bitmasks 2022-11-10 00:06:29 -08:00
Matt Nadareski
cb1d3d1db4 Add PE export table to printing 2022-11-09 23:27:06 -08:00
Matt Nadareski
5ba2a31d7d Add PE export table to builder 2022-11-09 23:06:52 -08:00
Matt Nadareski
0768a93bcb Fix Stream ReadString extension 2022-11-09 23:04:07 -08:00
Matt Nadareski
e690c6d0ff Add PE .edata components (not hooked up) 
This also does a pretty major cleanup of TODOs
 2022-11-09 22:23:40 -08:00
Matt Nadareski
0c6bf406c1 Fix PE delay-load directory 2022-11-09 22:02:38 -08:00
Matt Nadareski
95b5f12226 Add PE grouped sections note 2022-11-09 21:55:15 -08:00