Skip to content

Qiew v1.0
Compare
Choose a tag to compare
@mtivadar mtivadar released this 28 Jun 12:46
· 185 commits to master since this release
v1.0
d33c321

needs Terminus font: http://sourceforge.net/projects/terminus-font/files/terminus-font-4.39/terminus-font-4.39.exe/download

Supported functionality:

  • format viewer: PE/MBR/generic binary
    • PE
      • colorize ASCII/WIDECHAR strings, useful for reverse engineering
      • colorize API jumps, MZ/PE, also useful for reverse engineering
      • Header info: header, imports, directories, sections, version info: show with ALT+H, I, D, S, V
      • Highlight IAT and Overlay
      • jump to EP with F7
      • change address mode with F3: between RVA/VA/FA
    • MBR
      • partition table info: show with ALT+P
      • change address mode with F3: between FileAddr/MemAddr
    • Normal binary file
  • view modes (change between them with TAB)
    • binary
    • hex
      • F6 will change columns
    • disasm
      • x86/amd64 mode
      • you can follow branches with Enter
      • visible referenced strings, APIs
  • goto: ALT+G, support symbols: EP (entrypoint), END (end of file)
  • select text, will highlight all occurrences
  • dropper: ALT+F10, drops selection, drops objects: embedded PE files
  • copy/paste partial support (select stream, copy, paste elsewhere)
  • needs Terminus font: http://sourceforge.net/projects/terminus-font/files/terminus-font-4.39/terminus-font-4.39.exe/download
  • attached binary for Windows/AMD64, for other platforms you should get the source and install dependencies
Assets 3
Loading