Giters

hasherezade / pe_utils

A set of small utilities, helpers for PIN tracers

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

PE utils

Build status

Set of small, self-contained utilities to be used in other toolkits, i.e. as helpers for PIN Tools (example).

  • syscall_extractor - Extract syscalls from system DLLs (ntdll.dll, win32u.dll) into a CSV file
  • dll_load - Loads a given DLL. Calls exported functions if supplied.
  • pe_check - Checks the bitness of the PE and outputs it as a return value.
  • kdb_check - Checks if the Kernel Debugger is enabled (no elevation required). Outputs the status as a return value.

You can display the returned values of pe_check and kdb_check by:

echo %errorlevel%

About

A set of small utilities, helpers for PIN tracers

Languages

Language:C++ 79.4%Language:CMake 20.6%