Detect It Easy 0.73
 

Not sure if this is a carry on from the old DiE by hellspawn but seems interesting and the version number seems to take off from 0.64/5 DiE version that was last released (as far as I know) Haven't had a proper chance to test it out a lot yet due to being at work but seems promising and may have a better play tonight.

Attachment 6916

Attachment 6917

Attachment 6918

Attachment 6919

Attachment 6921


Ps: i am search here but not found thread if exist move this there also credit for this go to "StreamLine" hi post this on tuts4you

here is web site

Thanks BRO

Detect It Easy 0.74

as for my short exploration and discovery the tools looks damn good, gentlemen!

thanks for your share...this tool is a very good one.

Detect It Easy ver. 0.75
 

Detect It Easy ver.0.76.1 is out

:D

Sorry, at first glance to Detect as the Delete, I thought it was a tool to Delete files.
This tool compared with PE Exeinfo?

Update to version 0.77

no changelog?

Update to version 0.78

Сhangelog:
[+] Added a IMAGE_DIRECTORY_ENTRY_DEBUG (void)
[+] Added definition PCGuard (NikolayD)
[+] Added definition Safengine (NikolayD)
[+] Added definition NoobyProt (NikolayD)
[+] Improved the registry under Win8 x64 (4kusNick)
[ +] Improved opening a file, if one copy of the program is already running (4kusNick)
[+] Improved the appearance tab "Thanks" window "About" (4kusNick)
[+] added to the SDK function changes the order of bytes in a double word (GPcH)
[+] The SDK function added transforming the file offset of the virtual address (GPcH)
[+] added to the SDK function searches the string in the # heap. NET files (GPcH)
[+] Added label change in HEX-viewer in accordance with the fact that it shows . (BOROV)
[+] Improved definition Enigma Protector (DimitarSerg)
[+] Added definition FoxPro (DimitarSerg)
[+] Improved definition ASProtect 1.32Beta, 1.23rc1-SDK, 2.5 SKE build 03.31, 2.56 SKE build 0317 (4kusNick)
[+ ] Improved definition ASDPack 2.0 (4kusNick)
[+] Added definition Break-Into-Pattern (BIP!) v0.1 (4kusNick)
[+] Added detection of DOC (4kusNick)
[+] Fixed bug with saving the registry (changed "\ "on" / ") (redblkjck)
[+] Added detection for UPX PE + (Fix sent AJAX)
[+] Improved detection of new versions ExeCryptor (DimitarSerg)
[+] Improved detection of new versions VMProtect (DimitarSerg)

Download:
http://ntinfo.biz/index.php/detect-it-easy

It detects if the file is VFP compiled or detects one of the VFP protections like Refox, Defox etc....?

Very promising project!
dynamic and feature rich! Definitely Peid killer

Update to version 0.79

Сhangelog:
[+] Fixed some bugs.
[+] Improved definition ACProtect 1.41 and ACProtect 2.1.0 (4kusNick)
[+] Improved definition ANDpakk2 (apk2) v0.18 (4kusNick)
[+] Improved definition ASPack 1.05b (4kusNick)
[+] Improved definition ASPack 1.061b ( as Detective ASPack1.07b) (4kusNick)
[+] Improved definition ASPack 1.08.02 ( as Detective 1.08.01) (4kusNick)
[+] Improved definition ASPack 2.000, 2.001, 2.1, 2.11c, 2.11d (4kusNick)
[+] Improved definition DYAMAR Protector 1.3.5 (4kusNick)
[+] Improved detection of some versions ASPack (== DJ == [ZLO])
[+] Fixed bug with incorrect processing keys in the console version (exet0l)
[+] Improved definition of MSI (== DJ == [ZLO])
[+] Improved detection of new versions of Delphi (Mick Grove)
[+] Added detection of Excelsior JET (signature sent sendersu)

Download:
http://ntinfo.biz/index.php/detect-it-easy

Is important that the developement continue.

Nice to see the detecting tools getting updates. Kudos to all of you!

Download DIE ver. 0.80 (Windows)

Plugin for HIEW (author exet0l)
Plugin for CFF Explorer (author exet0l)

kjms, do you know how to make working the plugin under CFF Explorer..???
Thanks in advance...

Copy the DIE_Plugin.dll & die folder,place the files here
C:\Program Files\NTCore\Explorer Suite\Extensions\CFF Explorer

yes i think new Versions will be soon :)

Detect It Easy 0.81
Download: http://ntinfo.biz/index.php/detect-it-easy
Source: http://n10info.blogspot.nl/

[+] Fixed some bugs
[+] Improved definition VMprotect for dll (DenCoder)
[+] Fixed a bug with processing export some files (deniskore)
[+] Improved definition Safengine Shielden (DimitarSerg)
[+] Improved definition Starforce (Slinger)
[+] Improved detection of new versions of Armadillo (Dazz)
[+] Improved definition. ANDpakk2 (4kusNick)

This is a very useful tool indeed.

very nice idea and very good implemented, i am thinking about adding all dos exes protectors as ids, old stuff is still interesting for some of us :D

Are you sure it'll read DOS MZ?

hi,
yes, look here http://ntinfo.biz/files/How%20to%20create%20signatures.pdf

DIE V.0.82

DIE V.0.83

This is a MUST HAVE tool...

Not quite.
Every "tool" of this kind have his own good/bad stuff compared to the "concurrence".
:)

Let's hope the author will make it open source or it will DIE like PEiD ;)

It shouldn't be dead anytime soon :D

IMO this better than PEiD coz it is still active and detection engine can still be improved.

DIE_083_win

reason for this link to post is cannot be downloaded from main site.

Ps: link i post is from tuts4you posted there by horse credit to him.

short question - does it detect .net protectors?

DIE V.0.84
http://ntinfo.biz/index.php/detect-it-easy
Change log:

kjms mate your link no good

Here is a build of the DIE CFF plugin to support running the 64 bit version of CFF.

Windows 0.8.4 - http://ntinfo.biz/files/DIE_084_win.zip
Linux x64 0.8.4 - http://ntinfo.biz/files/DIE_084_lin64.tar.gz
Linux x86 0.8.4 - http://ntinfo.biz/files/DIE_084_lin32.tar.gz
Mac OSX 0.8.4 - http://ntinfo.biz/files/DIE_084_mac.dmg

HIEW Plugin - http://ntinfo.biz/files/Detect%20It%20Easy%20Hem%20for%20Hiew.zip
(info: http://n10info.blogspot.ru/2014/01/dies-plugin-for-hiew.html)

CFF Explorer Plugin - http://ntinfo.biz/files/Detect%20It%20Easy%20Plugin%20for%20CFF%20Explorer.zip
(info: http://n10info.blogspot.ru/2014/01/dies-plugin-for-cff-explorer.html)

DIE V.0.85

detect-it-easy

DIE V.0.86
http://ntinfo.biz/index.php/detect-it-easy