├── .gitattributes
├── .gitignore
├── LordPE.sln
├── LordPE
├── DialogBox.cpp
├── DialogBox.h
├── LoadPE.ico
├── LordPE.rc
├── LordPE.vcxproj
├── LordPE.vcxproj.filters
├── PETools.cpp
├── PETools.h
├── ShellCode.cpp
├── ShellCode.exe
├── resource.h
└── wWinMain.cpp
└── README.md
/.gitattributes:
--------------------------------------------------------------------------------
1 | ###############################################################################
2 | # Set default behavior to automatically normalize line endings.
3 | ###############################################################################
4 | * text=auto
5 |
6 | ###############################################################################
7 | # Set default behavior for command prompt diff.
8 | #
9 | # This is need for earlier builds of msysgit that does not have it on by
10 | # default for csharp files.
11 | # Note: This is only used by command line
12 | ###############################################################################
13 | #*.cs diff=csharp
14 |
15 | ###############################################################################
16 | # Set the merge driver for project and solution files
17 | #
18 | # Merging from the command prompt will add diff markers to the files if there
19 | # are conflicts (Merging from VS is not affected by the settings below, in VS
20 | # the diff markers are never inserted). Diff markers may cause the following
21 | # file extensions to fail to load in VS. An alternative would be to treat
22 | # these files as binary and thus will always conflict and require user
23 | # intervention with every merge. To do so, just uncomment the entries below
24 | ###############################################################################
25 | #*.sln merge=binary
26 | #*.csproj merge=binary
27 | #*.vbproj merge=binary
28 | #*.vcxproj merge=binary
29 | #*.vcproj merge=binary
30 | #*.dbproj merge=binary
31 | #*.fsproj merge=binary
32 | #*.lsproj merge=binary
33 | #*.wixproj merge=binary
34 | #*.modelproj merge=binary
35 | #*.sqlproj merge=binary
36 | #*.wwaproj merge=binary
37 |
38 | ###############################################################################
39 | # behavior for image files
40 | #
41 | # image files are treated as binary by default.
42 | ###############################################################################
43 | #*.jpg binary
44 | #*.png binary
45 | #*.gif binary
46 |
47 | ###############################################################################
48 | # diff behavior for common document formats
49 | #
50 | # Convert binary document formats to text before diffing them. This feature
51 | # is only available from the command line. Turn it on by uncommenting the
52 | # entries below.
53 | ###############################################################################
54 | #*.doc diff=astextplain
55 | #*.DOC diff=astextplain
56 | #*.docx diff=astextplain
57 | #*.DOCX diff=astextplain
58 | #*.dot diff=astextplain
59 | #*.DOT diff=astextplain
60 | #*.pdf diff=astextplain
61 | #*.PDF diff=astextplain
62 | #*.rtf diff=astextplain
63 | #*.RTF diff=astextplain
64 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | ## Ignore Visual Studio temporary files, build results, and
2 | ## files generated by popular Visual Studio add-ons.
3 | ##
4 | ## Get latest from https://github.com/github/gitignore/blob/master/VisualStudio.gitignore
5 |
6 | # User-specific files
7 | *.rsuser
8 | *.suo
9 | *.user
10 | *.userosscache
11 | *.sln.docstates
12 |
13 | # User-specific files (MonoDevelop/Xamarin Studio)
14 | *.userprefs
15 |
16 | # Build results
17 | [Dd]ebug/
18 | [Dd]ebugPublic/
19 | [Rr]elease/
20 | [Rr]eleases/
21 | x64/
22 | x86/
23 | [Aa][Rr][Mm]/
24 | [Aa][Rr][Mm]64/
25 | bld/
26 | [Bb]in/
27 | [Oo]bj/
28 | [Ll]og/
29 |
30 | # Visual Studio 2015/2017 cache/options directory
31 | .vs/
32 | # Uncomment if you have tasks that create the project's static files in wwwroot
33 | #wwwroot/
34 |
35 | # Visual Studio 2017 auto generated files
36 | Generated\ Files/
37 |
38 | # MSTest test Results
39 | [Tt]est[Rr]esult*/
40 | [Bb]uild[Ll]og.*
41 |
42 | # NUNIT
43 | *.VisualState.xml
44 | TestResult.xml
45 |
46 | # Build Results of an ATL Project
47 | [Dd]ebugPS/
48 | [Rr]eleasePS/
49 | dlldata.c
50 |
51 | # Benchmark Results
52 | BenchmarkDotNet.Artifacts/
53 |
54 | # .NET Core
55 | project.lock.json
56 | project.fragment.lock.json
57 | artifacts/
58 |
59 | # StyleCop
60 | StyleCopReport.xml
61 |
62 | # Files built by Visual Studio
63 | *_i.c
64 | *_p.c
65 | *_h.h
66 | *.ilk
67 | *.meta
68 | *.obj
69 | *.iobj
70 | *.pch
71 | *.pdb
72 | *.ipdb
73 | *.pgc
74 | *.pgd
75 | *.rsp
76 | *.sbr
77 | *.tlb
78 | *.tli
79 | *.tlh
80 | *.tmp
81 | *.tmp_proj
82 | *_wpftmp.csproj
83 | *.log
84 | *.vspscc
85 | *.vssscc
86 | .builds
87 | *.pidb
88 | *.svclog
89 | *.scc
90 |
91 | # Chutzpah Test files
92 | _Chutzpah*
93 |
94 | # Visual C++ cache files
95 | ipch/
96 | *.aps
97 | *.ncb
98 | *.opendb
99 | *.opensdf
100 | *.sdf
101 | *.cachefile
102 | *.VC.db
103 | *.VC.VC.opendb
104 |
105 | # Visual Studio profiler
106 | *.psess
107 | *.vsp
108 | *.vspx
109 | *.sap
110 |
111 | # Visual Studio Trace Files
112 | *.e2e
113 |
114 | # TFS 2012 Local Workspace
115 | $tf/
116 |
117 | # Guidance Automation Toolkit
118 | *.gpState
119 |
120 | # ReSharper is a .NET coding add-in
121 | _ReSharper*/
122 | *.[Rr]e[Ss]harper
123 | *.DotSettings.user
124 |
125 | # JustCode is a .NET coding add-in
126 | .JustCode
127 |
128 | # TeamCity is a build add-in
129 | _TeamCity*
130 |
131 | # DotCover is a Code Coverage Tool
132 | *.dotCover
133 |
134 | # AxoCover is a Code Coverage Tool
135 | .axoCover/*
136 | !.axoCover/settings.json
137 |
138 | # Visual Studio code coverage results
139 | *.coverage
140 | *.coveragexml
141 |
142 | # NCrunch
143 | _NCrunch_*
144 | .*crunch*.local.xml
145 | nCrunchTemp_*
146 |
147 | # MightyMoose
148 | *.mm.*
149 | AutoTest.Net/
150 |
151 | # Web workbench (sass)
152 | .sass-cache/
153 |
154 | # Installshield output folder
155 | [Ee]xpress/
156 |
157 | # DocProject is a documentation generator add-in
158 | DocProject/buildhelp/
159 | DocProject/Help/*.HxT
160 | DocProject/Help/*.HxC
161 | DocProject/Help/*.hhc
162 | DocProject/Help/*.hhk
163 | DocProject/Help/*.hhp
164 | DocProject/Help/Html2
165 | DocProject/Help/html
166 |
167 | # Click-Once directory
168 | publish/
169 |
170 | # Publish Web Output
171 | *.[Pp]ublish.xml
172 | *.azurePubxml
173 | # Note: Comment the next line if you want to checkin your web deploy settings,
174 | # but database connection strings (with potential passwords) will be unencrypted
175 | *.pubxml
176 | *.publishproj
177 |
178 | # Microsoft Azure Web App publish settings. Comment the next line if you want to
179 | # checkin your Azure Web App publish settings, but sensitive information contained
180 | # in these scripts will be unencrypted
181 | PublishScripts/
182 |
183 | # NuGet Packages
184 | *.nupkg
185 | # The packages folder can be ignored because of Package Restore
186 | **/[Pp]ackages/*
187 | # except build/, which is used as an MSBuild target.
188 | !**/[Pp]ackages/build/
189 | # Uncomment if necessary however generally it will be regenerated when needed
190 | #!**/[Pp]ackages/repositories.config
191 | # NuGet v3's project.json files produces more ignorable files
192 | *.nuget.props
193 | *.nuget.targets
194 |
195 | # Microsoft Azure Build Output
196 | csx/
197 | *.build.csdef
198 |
199 | # Microsoft Azure Emulator
200 | ecf/
201 | rcf/
202 |
203 | # Windows Store app package directories and files
204 | AppPackages/
205 | BundleArtifacts/
206 | Package.StoreAssociation.xml
207 | _pkginfo.txt
208 | *.appx
209 |
210 | # Visual Studio cache files
211 | # files ending in .cache can be ignored
212 | *.[Cc]ache
213 | # but keep track of directories ending in .cache
214 | !?*.[Cc]ache/
215 |
216 | # Others
217 | ClientBin/
218 | ~$*
219 | *~
220 | *.dbmdl
221 | *.dbproj.schemaview
222 | *.jfm
223 | *.pfx
224 | *.publishsettings
225 | orleans.codegen.cs
226 |
227 | # Including strong name files can present a security risk
228 | # (https://github.com/github/gitignore/pull/2483#issue-259490424)
229 | #*.snk
230 |
231 | # Since there are multiple workflows, uncomment next line to ignore bower_components
232 | # (https://github.com/github/gitignore/pull/1529#issuecomment-104372622)
233 | #bower_components/
234 |
235 | # RIA/Silverlight projects
236 | Generated_Code/
237 |
238 | # Backup & report files from converting an old project file
239 | # to a newer Visual Studio version. Backup files are not needed,
240 | # because we have git ;-)
241 | _UpgradeReport_Files/
242 | Backup*/
243 | UpgradeLog*.XML
244 | UpgradeLog*.htm
245 | ServiceFabricBackup/
246 | *.rptproj.bak
247 |
248 | # SQL Server files
249 | *.mdf
250 | *.ldf
251 | *.ndf
252 |
253 | # Business Intelligence projects
254 | *.rdl.data
255 | *.bim.layout
256 | *.bim_*.settings
257 | *.rptproj.rsuser
258 | *- Backup*.rdl
259 |
260 | # Microsoft Fakes
261 | FakesAssemblies/
262 |
263 | # GhostDoc plugin setting file
264 | *.GhostDoc.xml
265 |
266 | # Node.js Tools for Visual Studio
267 | .ntvs_analysis.dat
268 | node_modules/
269 |
270 | # Visual Studio 6 build log
271 | *.plg
272 |
273 | # Visual Studio 6 workspace options file
274 | *.opt
275 |
276 | # Visual Studio 6 auto-generated workspace file (contains which files were open etc.)
277 | *.vbw
278 |
279 | # Visual Studio LightSwitch build output
280 | **/*.HTMLClient/GeneratedArtifacts
281 | **/*.DesktopClient/GeneratedArtifacts
282 | **/*.DesktopClient/ModelManifest.xml
283 | **/*.Server/GeneratedArtifacts
284 | **/*.Server/ModelManifest.xml
285 | _Pvt_Extensions
286 |
287 | # Paket dependency manager
288 | .paket/paket.exe
289 | paket-files/
290 |
291 | # FAKE - F# Make
292 | .fake/
293 |
294 | # JetBrains Rider
295 | .idea/
296 | *.sln.iml
297 |
298 | # CodeRush personal settings
299 | .cr/personal
300 |
301 | # Python Tools for Visual Studio (PTVS)
302 | __pycache__/
303 | *.pyc
304 |
305 | # Cake - Uncomment if you are using it
306 | # tools/**
307 | # !tools/packages.config
308 |
309 | # Tabs Studio
310 | *.tss
311 |
312 | # Telerik's JustMock configuration file
313 | *.jmconfig
314 |
315 | # BizTalk build output
316 | *.btp.cs
317 | *.btm.cs
318 | *.odx.cs
319 | *.xsd.cs
320 |
321 | # OpenCover UI analysis results
322 | OpenCover/
323 |
324 | # Azure Stream Analytics local run output
325 | ASALocalRun/
326 |
327 | # MSBuild Binary and Structured Log
328 | *.binlog
329 |
330 | # NVidia Nsight GPU debugger configuration file
331 | *.nvuser
332 |
333 | # MFractors (Xamarin productivity tool) working folder
334 | .mfractor/
335 |
336 | # Local History for Visual Studio
337 | .localhistory/
338 |
339 | # BeatPulse healthcheck temp database
340 | healthchecksdb
--------------------------------------------------------------------------------
/LordPE.sln:
--------------------------------------------------------------------------------
1 |
2 | Microsoft Visual Studio Solution File, Format Version 12.00
3 | # Visual Studio Version 16
4 | VisualStudioVersion = 16.0.29230.47
5 | MinimumVisualStudioVersion = 10.0.40219.1
6 | Project("{8BC9CEB8-8B4A-11D0-8D11-00A0C91BC942}") = "LordPE", "LordPE\LordPE.vcxproj", "{ACF636A0-4C7C-4802-9610-88F8C4E276AE}"
7 | EndProject
8 | Global
9 | GlobalSection(SolutionConfigurationPlatforms) = preSolution
10 | Debug|x64 = Debug|x64
11 | Debug|x86 = Debug|x86
12 | Release|x64 = Release|x64
13 | Release|x86 = Release|x86
14 | EndGlobalSection
15 | GlobalSection(ProjectConfigurationPlatforms) = postSolution
16 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Debug|x64.ActiveCfg = Debug|x64
17 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Debug|x64.Build.0 = Debug|x64
18 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Debug|x86.ActiveCfg = Debug|Win32
19 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Debug|x86.Build.0 = Debug|Win32
20 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Release|x64.ActiveCfg = Release|x64
21 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Release|x64.Build.0 = Release|x64
22 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Release|x86.ActiveCfg = Release|Win32
23 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}.Release|x86.Build.0 = Release|Win32
24 | EndGlobalSection
25 | GlobalSection(SolutionProperties) = preSolution
26 | HideSolutionNode = FALSE
27 | EndGlobalSection
28 | GlobalSection(ExtensibilityGlobals) = postSolution
29 | SolutionGuid = {287855D9-93CC-46C5-B73F-8C3C4EC70C60}
30 | EndGlobalSection
31 | EndGlobal
32 |
--------------------------------------------------------------------------------
/LordPE/DialogBox.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DonaldTrump0/LordPE/cbc8fc6ed178dc575fc5a1bfdd257feac74ef776/LordPE/DialogBox.cpp
--------------------------------------------------------------------------------
/LordPE/DialogBox.h:
--------------------------------------------------------------------------------
1 | #pragma once
2 |
3 | void initApp(HINSTANCE hInstance);
--------------------------------------------------------------------------------
/LordPE/LoadPE.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DonaldTrump0/LordPE/cbc8fc6ed178dc575fc5a1bfdd257feac74ef776/LordPE/LoadPE.ico
--------------------------------------------------------------------------------
/LordPE/LordPE.rc:
--------------------------------------------------------------------------------
1 | // Microsoft Visual C++ generated resource script.
2 | //
3 | #pragma code_page(65001)
4 |
5 | #include "resource.h"
6 |
7 | #define APSTUDIO_READONLY_SYMBOLS
8 | /////////////////////////////////////////////////////////////////////////////
9 | //
10 | // Generated from the TEXTINCLUDE 2 resource.
11 | //
12 | #include "winres.h"
13 |
14 | /////////////////////////////////////////////////////////////////////////////
15 | #undef APSTUDIO_READONLY_SYMBOLS
16 |
17 | /////////////////////////////////////////////////////////////////////////////
18 | // Chinese (Simplified, PRC) resources
19 |
20 | #if !defined(AFX_RESOURCE_DLL) || defined(AFX_TARG_CHS)
21 | LANGUAGE LANG_CHINESE, SUBLANG_CHINESE_SIMPLIFIED
22 |
23 | #ifdef APSTUDIO_INVOKED
24 | /////////////////////////////////////////////////////////////////////////////
25 | //
26 | // TEXTINCLUDE
27 | //
28 |
29 | 1 TEXTINCLUDE
30 | BEGIN
31 | "resource.h\0"
32 | END
33 |
34 | 2 TEXTINCLUDE
35 | BEGIN
36 | "#include ""winres.h""\r\n"
37 | "\0"
38 | END
39 |
40 | 3 TEXTINCLUDE
41 | BEGIN
42 | "\r\n"
43 | "\0"
44 | END
45 |
46 | #endif // APSTUDIO_INVOKED
47 |
48 |
49 | /////////////////////////////////////////////////////////////////////////////
50 | //
51 | // Dialog
52 | //
53 |
54 | IDD_DIALOG_MAIN DIALOGEX 0, 0, 399, 227
55 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
56 | CAPTION "[ Lord PE ]"
57 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
58 | BEGIN
59 | GROUPBOX "",IDC_STATIC,7,7,303,213
60 | GROUPBOX "",IDC_STATIC,320,7,72,213
61 | PUSHBUTTON "PE Viewer",IDC_BUTTON_PE_VIEWER,329,24,52,18
62 | PUSHBUTTON "About",IDC_BUTTON_ABOUT,329,159,45,18
63 | PUSHBUTTON "Exit",IDC_BUTTON_EXIT,329,188,45,18
64 | CONTROL "",IDC_LIST_PROCESS,"SysListView32",LVS_REPORT | LVS_ALIGNLEFT | WS_BORDER | WS_TABSTOP,17,27,283,82
65 | CONTROL "",IDC_LIST_MODULE,"SysListView32",LVS_REPORT | LVS_ALIGNLEFT | WS_BORDER | WS_TABSTOP,17,121,283,82
66 | PUSHBUTTON "Add Shellcode",IDC_BUTTON_ADD_SHELLCODE,329,51,52,18
67 | END
68 |
69 | IDD_DIALOG_ABOUT DIALOGEX 0, 0, 310, 93
70 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
71 | CAPTION "[ About ]"
72 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
73 | BEGIN
74 | GROUPBOX "程序说明",IDC_STATIC,7,7,296,79
75 | LTEXT " 本程序包含PE解析、软件加壳、DLL注入等相关功能。所涉内容仅供学习使用,不得用于非法目的。",IDC_STATIC,28,29,247,21
76 | LTEXT "Daniel",IDC_STATIC,251,63,31,12
77 | END
78 |
79 | IDD_DIALOG_PE_VIEWER DIALOGEX 0, 0, 383, 168
80 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
81 | CAPTION "[ PE Viewer ]"
82 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
83 | BEGIN
84 | GROUPBOX "Basic PE Header Infomation",IDC_STATIC,7,7,298,154
85 | LTEXT "EntryPoint:",IDC_STATIC,17,29,36,8
86 | LTEXT "ImageBase:",IDC_STATIC,17,45,38,8
87 | LTEXT "SizeOfImage:",IDC_STATIC,17,61,44,8
88 | LTEXT "BaseOfCode:",IDC_STATIC,17,77,41,8
89 | LTEXT "BaseOfData:",IDC_STATIC,17,93,40,8
90 | LTEXT "SectionAlignment:",IDC_STATIC,17,109,59,8
91 | LTEXT "FileAlignment:",IDC_STATIC,17,125,47,8
92 | LTEXT "Magic:",IDC_STATIC,17,141,32,8
93 | EDITTEXT IDC_EDIT_ENTRY_POINT,82,27,58,12,ES_RIGHT | ES_AUTOHSCROLL
94 | EDITTEXT IDC_EDIT_SIZE_OF_IMAGE,82,59,58,12,ES_RIGHT | ES_AUTOHSCROLL
95 | EDITTEXT IDC_EDIT_BASE_OF_CODE,82,75,58,12,ES_RIGHT | ES_AUTOHSCROLL
96 | EDITTEXT IDC_EDIT_IMAGE_BASE,82,43,58,12,ES_RIGHT | ES_AUTOHSCROLL
97 | EDITTEXT IDC_EDIT_BASE_OF_DATA,82,91,58,12,ES_RIGHT | ES_AUTOHSCROLL
98 | EDITTEXT IDC_EDIT_SECTION_ALIGNMENT,82,107,58,12,ES_RIGHT | ES_AUTOHSCROLL
99 | EDITTEXT IDC_EDIT_FILE_ALIGNMENT,82,123,58,12,ES_RIGHT | ES_AUTOHSCROLL
100 | EDITTEXT IDC_EDIT_MAGIC,82,139,58,12,ES_RIGHT | ES_AUTOHSCROLL
101 | LTEXT "SubSystem:",IDC_STATIC,160,29,38,8
102 | LTEXT "NumberOfSections:",IDC_STATIC,160,45,62,8
103 | LTEXT "TimeDateStamp:",IDC_STATIC,160,61,54,8
104 | LTEXT "SizeOfHeaders:",IDC_STATIC,160,77,49,8
105 | LTEXT "Characteristics:",IDC_STATIC,160,93,49,8
106 | LTEXT "CheckSum:",IDC_STATIC,160,109,37,8
107 | LTEXT "SizeOfOptionalHeader:",IDC_STATIC,160,125,72,8
108 | LTEXT "NumOfRvaAndSizes:",IDC_STATIC,160,141,66,8
109 | EDITTEXT IDC_EDIT_SUB_SYSTEM,238,27,58,12,ES_RIGHT | ES_AUTOHSCROLL
110 | EDITTEXT IDC_EDIT_TIME_DATE_STAMP,238,59,58,12,ES_RIGHT | ES_AUTOHSCROLL
111 | EDITTEXT IDC_EDIT_SIZE_OF_HEADERS,238,75,58,12,ES_RIGHT | ES_AUTOHSCROLL
112 | EDITTEXT IDC_EDIT_NUMBER_OF_SECTIONS,238,43,58,12,ES_RIGHT | ES_AUTOHSCROLL
113 | EDITTEXT IDC_EDIT_CHARACTERISTICS,238,91,58,12,ES_RIGHT | ES_AUTOHSCROLL
114 | EDITTEXT IDC_EDIT_CHECK_SUM,238,107,58,12,ES_RIGHT | ES_AUTOHSCROLL
115 | EDITTEXT IDC_EDIT_SIZE_OF_OPTIONAL_HEADER,238,123,58,12,ES_RIGHT | ES_AUTOHSCROLL
116 | EDITTEXT IDC_EDIT_NUM_OF_RVA_AND_SIZES,238,139,58,12,ES_RIGHT | ES_AUTOHSCROLL
117 | PUSHBUTTON "Close",IDC_BUTTON_PE_VIEWER_CLOSE,320,12,42,18
118 | PUSHBUTTON "Sections",IDC_BUTTON_SECTION_TABLE,320,42,42,18
119 | PUSHBUTTON "Directories",IDC_BUTTON_DIRECTORY_TABLE,320,72,42,18
120 | END
121 |
122 | IDD_DIALOG_SECTION_TABLE DIALOGEX 0, 0, 339, 115
123 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
124 | CAPTION "[ Section Table ]"
125 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
126 | BEGIN
127 | CONTROL "",IDC_LIST_SECTION_TABLE,"SysListView32",LVS_REPORT | LVS_ALIGNLEFT | WS_BORDER | WS_TABSTOP,7,7,325,102
128 | END
129 |
130 | IDD_DIALOG_DIRECTORY_TABLE DIALOGEX 0, 0, 310, 280
131 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
132 | CAPTION "[ Directory Table ]"
133 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
134 | BEGIN
135 | GROUPBOX "Directory Information",IDC_STATIC,7,7,236,266
136 | LTEXT "ExportTable:",IDC_STATIC,17,37,41,8
137 | LTEXT "ImportTable:",IDC_STATIC,17,50,43,8
138 | LTEXT "Resource:",IDC_STATIC,17,63,32,8
139 | LTEXT "Exception:",IDC_STATIC,17,76,34,8
140 | LTEXT "Security:",IDC_STATIC,17,89,29,8
141 | LTEXT "Relocation:",IDC_STATIC,17,102,36,8
142 | LTEXT "Debug:",IDC_STATIC,17,115,24,8
143 | LTEXT "Copyright:",IDC_STATIC,17,128,32,8
144 | PUSHBUTTON "Close",IDC_BUTTON_DIRECTORY_TABLE_CLOSE,251,16,42,18
145 | LTEXT "RVA",IDC_STATIC,98,21,15,8
146 | LTEXT "SIZE",IDC_STATIC,162,21,16,8
147 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA1,77,49,58,12,ES_RIGHT | ES_AUTOHSCROLL
148 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA2,77,62,58,12,ES_RIGHT | ES_AUTOHSCROLL
149 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA3,77,75,58,12,ES_RIGHT | ES_AUTOHSCROLL
150 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA0,77,36,58,12,ES_RIGHT | ES_AUTOHSCROLL
151 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA5,77,101,58,12,ES_RIGHT | ES_AUTOHSCROLL
152 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA6,77,114,58,12,ES_RIGHT | ES_AUTOHSCROLL
153 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA7,77,127,58,12,ES_RIGHT | ES_AUTOHSCROLL
154 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA4,77,88,58,12,ES_RIGHT | ES_AUTOHSCROLL
155 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA9,77,153,58,12,ES_RIGHT | ES_AUTOHSCROLL
156 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA10,77,166,58,12,ES_RIGHT | ES_AUTOHSCROLL
157 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA11,77,179,58,12,ES_RIGHT | ES_AUTOHSCROLL
158 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA8,77,140,58,12,ES_RIGHT | ES_AUTOHSCROLL
159 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA13,77,205,58,12,ES_RIGHT | ES_AUTOHSCROLL
160 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA14,77,218,58,12,ES_RIGHT | ES_AUTOHSCROLL
161 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA15,77,231,58,12,ES_RIGHT | ES_AUTOHSCROLL
162 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_RVA12,77,192,58,12,ES_RIGHT | ES_AUTOHSCROLL
163 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE1,140,49,58,12,ES_RIGHT | ES_AUTOHSCROLL
164 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE2,140,62,58,12,ES_RIGHT | ES_AUTOHSCROLL
165 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE3,140,75,58,12,ES_RIGHT | ES_AUTOHSCROLL
166 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE0,140,36,58,12,ES_RIGHT | ES_AUTOHSCROLL
167 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE5,140,101,58,12,ES_RIGHT | ES_AUTOHSCROLL
168 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE6,140,114,58,12,ES_RIGHT | ES_AUTOHSCROLL
169 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE7,140,127,58,12,ES_RIGHT | ES_AUTOHSCROLL
170 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE4,140,88,58,12,ES_RIGHT | ES_AUTOHSCROLL
171 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE9,140,153,58,12,ES_RIGHT | ES_AUTOHSCROLL
172 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE10,140,166,58,12,ES_RIGHT | ES_AUTOHSCROLL
173 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE11,140,179,58,12,ES_RIGHT | ES_AUTOHSCROLL
174 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE8,140,140,58,12,ES_RIGHT | ES_AUTOHSCROLL
175 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE13,140,205,58,12,ES_RIGHT | ES_AUTOHSCROLL
176 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE14,140,218,58,12,ES_RIGHT | ES_AUTOHSCROLL
177 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE15,140,231,58,12,ES_RIGHT | ES_AUTOHSCROLL
178 | EDITTEXT IDC_EDIT_DATA_DIRECTORY_SIZE12,140,192,58,12,ES_RIGHT | ES_AUTOHSCROLL
179 | LTEXT "Globalptr:",IDC_STATIC,17,141,33,8
180 | LTEXT "TlsTable:",IDC_STATIC,17,154,30,8
181 | LTEXT "LoadConfig:",IDC_STATIC,17,167,39,8
182 | LTEXT "BoundImport:",IDC_STATIC,17,180,45,8
183 | LTEXT "IAT:",IDC_STATIC,17,193,16,8
184 | LTEXT "DelayImport:",IDC_STATIC,17,206,43,8
185 | LTEXT "COM:",IDC_STATIC,17,219,19,8
186 | LTEXT "Reserved:",IDC_STATIC,17,232,32,8
187 | PUSHBUTTON "...",IDC_BUTTON_EXPORT_TABLE,213,36,15,12
188 | PUSHBUTTON "...",IDC_BUTTON_IMPORT_TABLE,213,49,15,12
189 | PUSHBUTTON "...",IDC_BUTTON_RESOURCE,213,62,15,12
190 | PUSHBUTTON "...",IDC_BUTTON_RELOCATION,213,101,15,12
191 | PUSHBUTTON "...",IDC_BUTTON_BOUND_IMPORT,213,179,15,12
192 | PUSHBUTTON "...",IDC_BUTTON_IAT,213,192,15,12
193 | END
194 |
195 | IDD_DIALOG_EXPORT_TABLE DIALOGEX 0, 0, 310, 176
196 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
197 | CAPTION "[ Export Table ]"
198 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
199 | BEGIN
200 | EDITTEXT IDC_EDIT_EXPORT_TABLE,7,7,296,162,ES_MULTILINE | ES_AUTOHSCROLL | WS_VSCROLL
201 | END
202 |
203 | IDD_DIALOG_IMPORT_TABLE DIALOGEX 0, 0, 310, 176
204 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
205 | CAPTION "[ Import Table ]"
206 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
207 | BEGIN
208 | EDITTEXT IDC_EDIT_IMPORT_TABLE,7,7,296,162,ES_MULTILINE | ES_AUTOHSCROLL | WS_VSCROLL
209 | END
210 |
211 | IDD_DIALOG_RESOURCE_TABLE DIALOGEX 0, 0, 310, 176
212 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
213 | CAPTION "[ Resource Table ]"
214 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
215 | BEGIN
216 | EDITTEXT IDC_EDIT_RESOURCE_TABLE,7,7,296,162,ES_MULTILINE | ES_AUTOHSCROLL | WS_VSCROLL
217 | END
218 |
219 | IDD_DIALOG_RELOCATION_TABLE DIALOGEX 0, 0, 310, 176
220 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
221 | CAPTION "[ Relocation Table ]"
222 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
223 | BEGIN
224 | EDITTEXT IDC_EDIT_RELOCATION_TABLE,7,7,296,162,ES_MULTILINE | ES_AUTOHSCROLL | WS_VSCROLL
225 | END
226 |
227 | IDD_DIALOG_BOUND_IMPORT_TABLE DIALOGEX 0, 0, 310, 176
228 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
229 | CAPTION "[ Bound Import Table ]"
230 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
231 | BEGIN
232 | EDITTEXT IDC_EDIT_BOUND_IMPORT_TABLE,7,7,296,162,ES_MULTILINE | ES_AUTOHSCROLL | WS_VSCROLL
233 | END
234 |
235 | IDD_DIALOG_IAT_TABLE DIALOGEX 0, 0, 310, 176
236 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
237 | CAPTION "[ IAT Table ]"
238 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
239 | BEGIN
240 | EDITTEXT IDC_EDIT_IAT_TABLE,7,7,296,162,ES_MULTILINE | ES_AUTOHSCROLL | WS_VSCROLL
241 | END
242 |
243 | IDD_DIALOG_ADD_SHELL DIALOGEX 0, 0, 298, 133
244 | STYLE DS_SETFONT | DS_MODALFRAME | DS_FIXEDSYS | WS_POPUP | WS_CAPTION | WS_SYSMENU
245 | CAPTION "[ Add Shell ]"
246 | FONT 8, "MS Shell Dlg", 400, 0, 0x1
247 | BEGIN
248 | LTEXT "Software:",IDC_STATIC,31,64,31,8
249 | LTEXT "Shell:",IDC_STATIC,32,36,19,8
250 | GROUPBOX "",IDC_STATIC,17,19,266,69
251 | PUSHBUTTON "...",IDC_BUTTON_SHELL_PATH,247,35,15,12
252 | PUSHBUTTON "...",IDC_BUTTON_SRC_PATH,247,62,15,12
253 | EDITTEXT IDC_EDIT_SHELL_PATH,72,34,160,12,ES_AUTOHSCROLL
254 | EDITTEXT IDC_EDIT_SRC_PATH,71,62,160,12,ES_AUTOHSCROLL
255 | PUSHBUTTON "Start",IDC_BUTTON_START,237,99,45,18
256 | END
257 |
258 |
259 | /////////////////////////////////////////////////////////////////////////////
260 | //
261 | // DESIGNINFO
262 | //
263 |
264 | #ifdef APSTUDIO_INVOKED
265 | GUIDELINES DESIGNINFO
266 | BEGIN
267 | IDD_DIALOG_MAIN, DIALOG
268 | BEGIN
269 | LEFTMARGIN, 7
270 | RIGHTMARGIN, 392
271 | TOPMARGIN, 7
272 | BOTTOMMARGIN, 220
273 | END
274 |
275 | IDD_DIALOG_ABOUT, DIALOG
276 | BEGIN
277 | LEFTMARGIN, 7
278 | RIGHTMARGIN, 303
279 | TOPMARGIN, 7
280 | BOTTOMMARGIN, 86
281 | END
282 |
283 | IDD_DIALOG_PE_VIEWER, DIALOG
284 | BEGIN
285 | LEFTMARGIN, 7
286 | RIGHTMARGIN, 376
287 | TOPMARGIN, 7
288 | BOTTOMMARGIN, 161
289 | END
290 |
291 | IDD_DIALOG_SECTION_TABLE, DIALOG
292 | BEGIN
293 | LEFTMARGIN, 7
294 | RIGHTMARGIN, 332
295 | TOPMARGIN, 7
296 | BOTTOMMARGIN, 108
297 | END
298 |
299 | IDD_DIALOG_DIRECTORY_TABLE, DIALOG
300 | BEGIN
301 | LEFTMARGIN, 7
302 | RIGHTMARGIN, 303
303 | TOPMARGIN, 7
304 | BOTTOMMARGIN, 273
305 | END
306 |
307 | IDD_DIALOG_EXPORT_TABLE, DIALOG
308 | BEGIN
309 | LEFTMARGIN, 7
310 | RIGHTMARGIN, 303
311 | TOPMARGIN, 7
312 | BOTTOMMARGIN, 169
313 | END
314 |
315 | IDD_DIALOG_IMPORT_TABLE, DIALOG
316 | BEGIN
317 | LEFTMARGIN, 7
318 | RIGHTMARGIN, 303
319 | TOPMARGIN, 7
320 | BOTTOMMARGIN, 169
321 | END
322 |
323 | IDD_DIALOG_RESOURCE_TABLE, DIALOG
324 | BEGIN
325 | LEFTMARGIN, 7
326 | RIGHTMARGIN, 303
327 | TOPMARGIN, 7
328 | BOTTOMMARGIN, 169
329 | END
330 |
331 | IDD_DIALOG_RELOCATION_TABLE, DIALOG
332 | BEGIN
333 | LEFTMARGIN, 7
334 | RIGHTMARGIN, 303
335 | TOPMARGIN, 7
336 | BOTTOMMARGIN, 169
337 | END
338 |
339 | IDD_DIALOG_BOUND_IMPORT_TABLE, DIALOG
340 | BEGIN
341 | LEFTMARGIN, 7
342 | RIGHTMARGIN, 303
343 | TOPMARGIN, 7
344 | BOTTOMMARGIN, 169
345 | END
346 |
347 | IDD_DIALOG_IAT_TABLE, DIALOG
348 | BEGIN
349 | LEFTMARGIN, 7
350 | RIGHTMARGIN, 303
351 | TOPMARGIN, 7
352 | BOTTOMMARGIN, 169
353 | END
354 |
355 | IDD_DIALOG_ADD_SHELL, DIALOG
356 | BEGIN
357 | LEFTMARGIN, 7
358 | RIGHTMARGIN, 291
359 | TOPMARGIN, 7
360 | BOTTOMMARGIN, 126
361 | END
362 | END
363 | #endif // APSTUDIO_INVOKED
364 |
365 |
366 | /////////////////////////////////////////////////////////////////////////////
367 | //
368 | // AFX_DIALOG_LAYOUT
369 | //
370 |
371 | IDD_DIALOG_MAIN AFX_DIALOG_LAYOUT
372 | BEGIN
373 | 0
374 | END
375 |
376 | IDD_DIALOG_ABOUT AFX_DIALOG_LAYOUT
377 | BEGIN
378 | 0
379 | END
380 |
381 | IDD_DIALOG_PE_VIEWER AFX_DIALOG_LAYOUT
382 | BEGIN
383 | 0
384 | END
385 |
386 | IDD_DIALOG_SECTION_TABLE AFX_DIALOG_LAYOUT
387 | BEGIN
388 | 0
389 | END
390 |
391 | IDD_DIALOG_DIRECTORY_TABLE AFX_DIALOG_LAYOUT
392 | BEGIN
393 | 0
394 | END
395 |
396 | IDD_DIALOG_EXPORT_TABLE AFX_DIALOG_LAYOUT
397 | BEGIN
398 | 0
399 | END
400 |
401 | IDD_DIALOG_IMPORT_TABLE AFX_DIALOG_LAYOUT
402 | BEGIN
403 | 0
404 | END
405 |
406 | IDD_DIALOG_RESOURCE_TABLE AFX_DIALOG_LAYOUT
407 | BEGIN
408 | 0
409 | END
410 |
411 | IDD_DIALOG_RELOCATION_TABLE AFX_DIALOG_LAYOUT
412 | BEGIN
413 | 0
414 | END
415 |
416 | IDD_DIALOG_BOUND_IMPORT_TABLE AFX_DIALOG_LAYOUT
417 | BEGIN
418 | 0
419 | END
420 |
421 | IDD_DIALOG_IAT_TABLE AFX_DIALOG_LAYOUT
422 | BEGIN
423 | 0
424 | END
425 |
426 | IDD_DIALOG_ADD_SHELL AFX_DIALOG_LAYOUT
427 | BEGIN
428 | 0
429 | END
430 |
431 |
432 | /////////////////////////////////////////////////////////////////////////////
433 | //
434 | // Icon
435 | //
436 |
437 | // Icon with lowest ID value placed first to ensure application icon
438 | // remains consistent on all systems.
439 | IDI_ICON_ICON ICON "C:\\Users\\12269\\source\\repos\\LordPE\\LordPE\\LoadPE.ico"
440 |
441 | #endif // Chinese (Simplified, PRC) resources
442 | /////////////////////////////////////////////////////////////////////////////
443 |
444 |
445 |
446 | #ifndef APSTUDIO_INVOKED
447 | /////////////////////////////////////////////////////////////////////////////
448 | //
449 | // Generated from the TEXTINCLUDE 3 resource.
450 | //
451 |
452 |
453 | /////////////////////////////////////////////////////////////////////////////
454 | #endif // not APSTUDIO_INVOKED
455 |
456 |
--------------------------------------------------------------------------------
/LordPE/LordPE.vcxproj:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | Debug
6 | Win32
7 |
8 |
9 | Release
10 | Win32
11 |
12 |
13 | Debug
14 | x64
15 |
16 |
17 | Release
18 | x64
19 |
20 |
21 |
22 | 16.0
23 | {ACF636A0-4C7C-4802-9610-88F8C4E276AE}
24 | Win32Proj
25 | LordPE
26 | 10.0
27 |
28 |
29 |
30 | Application
31 | true
32 | v142
33 | Unicode
34 | false
35 |
36 |
37 | Application
38 | false
39 | v142
40 | true
41 | Unicode
42 | false
43 |
44 |
45 | Application
46 | true
47 | v142
48 | Unicode
49 |
50 |
51 | Application
52 | false
53 | v142
54 | true
55 | Unicode
56 |
57 |
58 |
59 |
60 |
61 |
62 |
63 |
64 |
65 |
66 |
67 |
68 |
69 |
70 |
71 |
72 |
73 |
74 |
75 |
76 | true
77 |
78 |
79 | true
80 |
81 |
82 | false
83 |
84 |
85 | false
86 |
87 |
88 |
89 | Level3
90 | Disabled
91 | true
92 | WIN32;_DEBUG;_WINDOWS;%(PreprocessorDefinitions)
93 | true
94 |
95 |
96 | Windows
97 | true
98 |
99 |
100 |
101 |
102 | Level3
103 | Disabled
104 | true
105 | _DEBUG;_WINDOWS;%(PreprocessorDefinitions)
106 | true
107 |
108 |
109 | Windows
110 | true
111 |
112 |
113 |
114 |
115 | Level3
116 | MaxSpeed
117 | true
118 | true
119 | true
120 | WIN32;NDEBUG;_WINDOWS;%(PreprocessorDefinitions)
121 | true
122 |
123 |
124 | Windows
125 | true
126 | true
127 | true
128 |
129 |
130 |
131 |
132 | Level3
133 | MaxSpeed
134 | true
135 | true
136 | true
137 | NDEBUG;_WINDOWS;%(PreprocessorDefinitions)
138 | true
139 |
140 |
141 | Windows
142 | true
143 | true
144 | true
145 |
146 |
147 |
148 |
149 |
150 |
151 |
152 |
153 |
154 |
155 |
156 |
157 |
158 |
159 |
160 |
161 |
162 |
163 |
164 |
165 |
166 |
--------------------------------------------------------------------------------
/LordPE/LordPE.vcxproj.filters:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 |
5 | {4FC737F1-C7A5-4376-A066-2A32D752A2FF}
6 | cpp;c;cc;cxx;def;odl;idl;hpj;bat;asm;asmx
7 |
8 |
9 | {93995380-89BD-4b04-88EB-625FBE52EBFB}
10 | h;hh;hpp;hxx;hm;inl;inc;ipp;xsd
11 |
12 |
13 | {67DA6AB6-F800-4c08-8B7A-83BB121AAD01}
14 | rc;ico;cur;bmp;dlg;rc2;rct;bin;rgs;gif;jpg;jpeg;jpe;resx;tiff;tif;png;wav;mfcribbon-ms
15 |
16 |
17 |
18 |
19 | 源文件
20 |
21 |
22 | 源文件
23 |
24 |
25 | 源文件
26 |
27 |
28 |
29 |
30 | 头文件
31 |
32 |
33 | 头文件
34 |
35 |
36 | 头文件
37 |
38 |
39 |
40 |
41 | 资源文件
42 |
43 |
44 |
45 |
46 | 资源文件
47 |
48 |
49 |
--------------------------------------------------------------------------------
/LordPE/PETools.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DonaldTrump0/LordPE/cbc8fc6ed178dc575fc5a1bfdd257feac74ef776/LordPE/PETools.cpp
--------------------------------------------------------------------------------
/LordPE/PETools.h:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DonaldTrump0/LordPE/cbc8fc6ed178dc575fc5a1bfdd257feac74ef776/LordPE/PETools.h
--------------------------------------------------------------------------------
/LordPE/ShellCode.cpp:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DonaldTrump0/LordPE/cbc8fc6ed178dc575fc5a1bfdd257feac74ef776/LordPE/ShellCode.cpp
--------------------------------------------------------------------------------
/LordPE/ShellCode.exe:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DonaldTrump0/LordPE/cbc8fc6ed178dc575fc5a1bfdd257feac74ef776/LordPE/ShellCode.exe
--------------------------------------------------------------------------------
/LordPE/resource.h:
--------------------------------------------------------------------------------
1 | //{{NO_DEPENDENCIES}}
2 | // Microsoft Visual C++ generated include file.
3 | // Used by LordPE.rc
4 | //
5 | #define IDD_DIALOG_MAIN 101
6 | #define IDI_ICON_ICON 103
7 | #define IDD_DIALOG_ABOUT 105
8 | #define IDD_DIALOG_PE_VIEWER 107
9 | #define IDD_DIALOG_SECTION_TABLE 109
10 | #define IDD_DIALOG_DIRECTORY_TABLE 111
11 | #define IDD_DIALOG_EXPORT_TABLE 113
12 | #define IDD_DIALOG_EXPORT_TABLE2 114
13 | #define IDD_DIALOG_EXPORT_TABLE1 116
14 | #define IDD_DIALOG_IMPORT_TABLE 116
15 | #define IDD_DIALOG_RESOURCE_TABLE 117
16 | #define IDD_DIALOG_RELOCATION_TABLE 118
17 | #define IDD_DIALOG_BOUND_IMPORT_TABLE 119
18 | #define IDD_DIALOG_IAT_TABLE 120
19 | #define IDD_DIALOG_ADD_SHELLCODE 121
20 | #define IDD_DIALOG_ADD_SHELL 121
21 | #define IDC_BUTTON_PE_VIEWER 1002
22 | #define IDC_BUTTON_ABOUT 1003
23 | #define IDC_BUTTON_LOGOUT 1004
24 | #define IDC_BUTTON_EXIT 1004
25 | #define IDC_BUTTON_ADD_SHELLCODE 1005
26 | #define IDC_LIST_PROCESS 1011
27 | #define IDC_LIST_MODULE 1012
28 | #define IDC_EDIT_ENTRY_POINT 1025
29 | #define IDC_EDIT_SIZE_OF_IMAGE 1026
30 | #define IDC_EDIT_DATA_DIRECTORY_RVA2 1026
31 | #define IDC_EDIT_BASE_OF_CODE 1027
32 | #define IDC_EDIT_DATA_DIRECTORY_RVA3 1027
33 | #define IDC_EDIT_IMAGE_BASE 1028
34 | #define IDC_EDIT_DATA_DIRECTORY_RVA0 1028
35 | #define IDC_EDIT_BASE_OF_DATA 1029
36 | #define IDC_EDIT_SECTION_ALIGNMENT 1030
37 | #define IDC_EDIT_DATA_DIRECTORY_RVA5 1030
38 | #define IDC_EDIT_FILE_ALIGNMENT 1031
39 | #define IDC_EDIT_DATA_DIRECTORY_RVA6 1031
40 | #define IDC_EDIT_MAGIC 1032
41 | #define IDC_EDIT_DATA_DIRECTORY_RVA7 1032
42 | #define IDC_EDIT_SUB_SYSTEM 1033
43 | #define IDC_EDIT_DATA_DIRECTORY_RVA4 1033
44 | #define IDC_EDIT_TIME_DATE_STAMP 1034
45 | #define IDC_EDIT_DATA_DIRECTORY_RVA9 1034
46 | #define IDC_EDIT_SIZE_OF_HEADERS 1035
47 | #define IDC_EDIT_DATA_DIRECTORY_RVA10 1035
48 | #define IDC_EDIT_NUMBER_OF_SECTIONS 1036
49 | #define IDC_EDIT_DATA_DIRECTORY_RVA11 1036
50 | #define IDC_EDIT_CHARACTERISTICS 1037
51 | #define IDC_EDIT_DATA_DIRECTORY_RVA8 1037
52 | #define IDC_EDIT_CHECK_SUM 1038
53 | #define IDC_EDIT_DATA_DIRECTORY_RVA13 1038
54 | #define IDC_EDIT_SIZE_OF_OPTIONAL_HEADER 1039
55 | #define IDC_EDIT_DATA_DIRECTORY_RVA14 1039
56 | #define IDC_EDIT_NUM_OF_RVA_AND_SIZES 1040
57 | #define IDC_EDIT_DATA_DIRECTORY_RVA15 1040
58 | #define IDC_BUTTON_PE_VIEWER_CLOSE 1041
59 | #define IDC_EDIT_DATA_DIRECTORY_RVA12 1041
60 | #define IDC_LIST_SECTION_TABLE 1042
61 | #define IDC_BUTTON_DIRECTORY_TABLE_CLOSE 1042
62 | #define IDC_BUTTON_DIRECTORY_TABLE 1043
63 | #define IDC_EDIT_DATA_DIRECTORY_SIZE1 1043
64 | #define IDC_EDIT_DATA_DIRECTORY_SIZE2 1044
65 | #define IDC_BUTTON_SECTION_TABLE 1045
66 | #define IDC_EDIT_DATA_DIRECTORY_SIZE3 1045
67 | #define IDC_EDIT_DATA_DIRECTORY_SIZE0 1046
68 | #define IDC_EDIT_DATA_DIRECTORY_SIZE5 1047
69 | #define IDC_EDIT_DATA_DIRECTORY_SIZE6 1048
70 | #define IDC_EDIT_DATA_DIRECTORY_SIZE7 1049
71 | #define IDC_EDIT_DATA_DIRECTORY_SIZE4 1050
72 | #define IDC_EDIT_DATA_DIRECTORY_SIZE9 1051
73 | #define IDC_EDIT_DATA_DIRECTORY_SIZE10 1052
74 | #define IDC_EDIT_DATA_DIRECTORY_SIZE11 1053
75 | #define IDC_EDIT_DATA_DIRECTORY_SIZE8 1054
76 | #define IDC_EDIT_DATA_DIRECTORY_SIZE13 1055
77 | #define IDC_EDIT_DATA_DIRECTORY_SIZE14 1056
78 | #define IDC_EDIT_DATA_DIRECTORY_SIZE15 1057
79 | #define IDC_EDIT_DATA_DIRECTORY_SIZE12 1058
80 | #define IDC_EDIT_DATA_DIRECTORY_RVA1 1059
81 | #define IDC_BUTTON_EXPORT_TABLE 1060
82 | #define IDC_BUTTON_SRC_PATH 1061
83 | #define IDC_EDIT1 1062
84 | #define IDC_EDIT_EXPORT_TABLE 1062
85 | #define IDC_EDIT_IMPORT_TABLE 1063
86 | #define IDC_BUTTON_IMPORT_TABLE 1064
87 | #define IDC_EDIT_RESOURCE_TABLE 1064
88 | #define IDC_BUTTON_RESOURCE 1065
89 | #define IDC_EDIT_RELOCATION_TABLE 1065
90 | #define IDC_BUTTON_RELOCATION 1066
91 | #define IDC_EDIT_BOUND_IMPORT_TABLE 1066
92 | #define IDC_BUTTON_BOUND_IMPORT 1067
93 | #define IDC_EDIT_IAT_TABLE 1067
94 | #define IDC_BUTTON_IAT 1068
95 | #define IDC_EDIT_SHELL_PATH 1070
96 | #define IDC_EDIT_SRC_PATH 1071
97 | #define IDC_BUTTON_SHELL_PATH 1072
98 | #define IDC_BUTTON_START 1073
99 |
100 | // Next default values for new objects
101 | //
102 | #ifdef APSTUDIO_INVOKED
103 | #ifndef APSTUDIO_READONLY_SYMBOLS
104 | #define _APS_NEXT_RESOURCE_VALUE 125
105 | #define _APS_NEXT_COMMAND_VALUE 40001
106 | #define _APS_NEXT_CONTROL_VALUE 1074
107 | #define _APS_NEXT_SYMED_VALUE 101
108 | #endif
109 | #endif
110 |
--------------------------------------------------------------------------------
/LordPE/wWinMain.cpp:
--------------------------------------------------------------------------------
1 | #include
2 | #include "DialogBox.h"
3 |
4 | int WINAPI wWinMain(HINSTANCE hInstance, HINSTANCE hPrevInstance, PWSTR pCmdLine, int nCmdShow) {
5 | initApp(hInstance);
6 | return 0;
7 | }
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # LordPE
2 | PE解析工具,仅供学习交流,欢迎指教。
3 |
4 | 该项目在vs2019以及x86选项下编译通过(不能编译成x64),使用的是win32 api。初始版本已在release中发布,敬请下载把玩。
5 |
6 |
7 | 目录说明:
8 |
9 | LordPE.sln: vs2019工程文件,可直接双击打开项目
10 | LordPE/LordPE.vcxproj: vs2019工程文件
11 | LordPE/LordPE.vcxproj.filters: vs2019工程文件
12 | LordPE/LordPE.rc: 资源文件
13 | LordPE/LoadPE.ico: 项目图标
14 | LordPE/wWinMain.cpp: 项目入口
15 | LordPE/DialogBox.cpp: 各个DialogBox以及对应的回调函数
16 | LordPE/PETools.cpp: PE文件相关的工具函数
17 | LordPE/ShellCode.cpp: 程序壳(必须在VC++ 6.0下编译)
18 |
--------------------------------------------------------------------------------