Tool for scanning the Import and Export tables in Windows binaries.

If you find a vulnerability in a DLL or in any Portable Executable file it would be a good idea to locate all the binaries that use that particular vulnerable function so that you can exploit them.

I wrote a tool that searches for a specific string in the Import and Export tables of all the Windows binaries located in a given directory. It is a very practical and convenient way to find which binaries make use of a function you know how to exploit.

The script is written in Python and you can find it here:
https://github.com/tr3w/PElookup.py

Leave a Reply

Your email address will not be published. Required fields are marked *

Filed under: Hacking - @ 2024-02-28 05:02