From Collaborative RCE Tool Library

Jump to: navigation, search

PE Dumper

Tool name: PE Dumper
Rating: 0.0 (0 votes)
Author: FKMA                        
Website: N/A
Current version: 3.03
Last updated: January 14, 2008
Direct D/L link: Locally archived copy
License type: Free
Description: This is new PE Dumper plugin for best user mode debugger OllyDbg.
The PE Dumper is similar to OllyDump by Gigapede but fully rewritten and have
some features:

- You can dump any *.exe and *.dll from debugged process address space.
- You can add/remove sections to/from resulting dump. If you are add new section,
you specify VA and size of memory region to add as section, attributes, File Offset, RAW size and section name. So, now you can add to dump any memory regions created by protectors during debug session.
- Antidump antiprotection and most correct save dump technics: during dumping,
against other dumpers, PE Dumper save only present memory pages (basing on VA & Virtual size). So, if between memory regions present non-allocated space, most other dumpers (and OllyDump too) will not save dump correctly, but PE Dumper will save all correctly.
- Fix raw sizes correct only RAW size of image according to Virtual Sizes.
- Paste header from disk - use header from disk, it's clear.
Related URLs: No related URLs have been submitted for this tool yet


RSS feed Feed containing all updates for this tool.

You are welcome to add your own useful notes about this tool, for others to see!

Retrieved from "http://www.woodmann.com/collaborative/tools/index.php/PE_Dumper"


If you find that any information for the tool above is missing, outdated or incorrect, please edit it!
(please also edit it if you think it fits well in some additional category, since this can also be controlled)

Views
Category Navigation Tree
RCE Tools
   Categorized by Target Type  (238)
   Categorized by Tool Type  (1220)
   Anti Anti Test Tools  (16)
   Assemblers  (21)
   Code Coverage Tools  (13)
   Code Injection Tools  (35)
   Code Ripping Tools  (2)
   Crypto Tools  (14)
   Data Extraction Tools  (26)
   Debuggers  (48)
   Decompilers  (27)
   Deobfuscation Tools  (16)
   Dependency Analyzer Tools  (5)
   Diff Tools  (44)
   Disassemblers  (65)
   Dongle Analysis Tools  (26)
   Exe Analyzers  (38)
   Executable File Editors & Patchers  (92)
   Firefox Extensions  (3)
   GUI Manipulation Tools  (18)
   Hardware Reversing Tools  (26)
   Helper Tools  (3)
   Hex Editors  (12)
   IDA Signature Creation Tools  (5)
   Kernel Tools  (13)
   Memory Data Tracing Tools  (8)
   Memory Patchers  (7)
   Memory Search Tools  (8)
   Monitoring Tools  (133)
   Network Tools  (19)
   Packers  (18)
   Patch Packaging Tools  (13)
   Profiler Tools  (11)
   Programming Libraries  (46)
   Regular Expression Tools  (3)
   Resource Editors  (13)
   Reverse Engineering Frameworks  (8)
   Source Code Tools  (12)
   String Finders  (6)
   Symbol Tools  (12)
   System Information Extraction Tools  (9)
   Technical PoC Tools  (8)
   Test and Sandbox Environments  (22)
   Tool Extensions  (170)
   CFF Explorer Extensions  (5)
   Filemon Extensions  (1)
   Firefox Extensions  (3)
   GDB Extensions  (1)
   Hexer Extensions  (1)
   IDA Extensions  (56)
   ImpREC Extensions  (3)
   Obsidian Extensions  (1)
   OllyDbg Custom Versions  (4)
   OllyDbg Extensions  (79)
   Regmon Extensions  (1)
   SoftICE Extensions  (6)
   WinDbg Extensions  (8)
   Tool Hiding Tools  (7)
   Tool Signatures  (17)
   Tracers  (19)
   Unpacking Tools  (83)
   Needs New Category  (2)