RubyGems - pedump - Versions diffs - 0.6.7 → 0.6.9 - Mend

pedump 0.6.7 → 0.6.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

checksums.yaml +4 -4
data/Gemfile.lock +27 -25
data/README.md +7 -0
data/VERSION +1 -1
data/data/ordlookup/oleaut32.dll.yml +796 -0
data/data/ordlookup/pefile2json.py +17 -0
data/data/ordlookup/ws2_32.dll.yml +234 -0
data/data/ordlookup/wsock32.dll.yml +234 -0
data/lib/pedump/cli.rb +65 -6
data/lib/pedump/ordlookup.rb +19 -0
data/lib/pedump/pe.rb +4 -2
data/lib/pedump.rb +28 -0
data/pedump.gemspec +19 -28
metadata +8 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9ba70619b5754fa0d8c35a0d9d229b78074096e11438678784f7735686101c93
-  data.tar.gz: 37d5785c6a3c9e411c2b3fe8359f216cea26c0084b8a1bcdf2df18f745654190
+  metadata.gz: 71cf1d5280d69bb55528610be1281415edb247ab051dc30e8f473deb3478b2e2
+  data.tar.gz: f35b57ee5d35f2ebffbef16904ed0393f29b5eea1b235e43f13fced736826401
 SHA512:
-  metadata.gz: a3bbd37ffaaf1328c13d10d1a764cd3d685e6c4364d6fb5ab4bfd787f51e135b9b284572f88828a73c8ae3fb381646e9044508c6dc9eeff6f8b5d348e8d75474
-  data.tar.gz: 9303ed13e74f33c607622a7497d7635718696e28b44dd0027d3ca353aa62474621b264609971ee80917da4b4c458903a9b227ebd9b3761a4ccf0d5fad2df00f0
+  metadata.gz: d2d43650cebbda5b18cfc215460ce7b6bc077f0488a40bec3cb24fbbb941b02acb29a5ee0345b17faa274780f01531847b37b89fe419eacd094d8f507ea402f3
+  data.tar.gz: c5137537e4fe3a27250131012e7d4214e793f4ab648ad7f0ead40a3e6305aea01e8a4760bd503cc887ed0617f18750ea193a7caadb4f500e2aede86b713b1565

data/Gemfile.lock CHANGED Viewed

@@ -1,13 +1,14 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    addressable (2.8.5)
+    addressable (2.8.6)
       public_suffix (>= 2.0.2, < 6.0)
     awesome_print (1.9.2)
+    base64 (0.2.0)
     builder (3.2.4)
     descendants_tracker (0.0.4)
       thread_safe (~> 0.3, >= 0.3.1)
-    diff-lcs (1.5.0)
+    diff-lcs (1.5.1)
     faraday (1.10.3)
       faraday-em_http (~> 1.0)
       faraday-em_synchrony (~> 1.0)
@@ -31,7 +32,7 @@ GEM
     faraday-patron (1.0.0)
     faraday-rack (1.0.0)
     faraday-retry (1.0.3)
-    git (1.18.0)
+    git (1.19.1)
       addressable (~> 2.8)
       rchardet (~> 1.8)
     github_api (0.19.0)
@@ -41,7 +42,7 @@ GEM
       hashie (~> 3.5, >= 3.5.2)
       oauth2 (~> 1.0)
     hashie (3.6.0)
-    highline (2.1.0)
+    highline (3.0.1)
     iostruct (0.0.5)
     juwelier (2.4.9)
       builder
@@ -55,14 +56,15 @@ GEM
       rake
       rdoc
       semver2
-    jwt (2.7.1)
+    jwt (2.8.1)
+      base64
     kamelcase (0.0.2)
       semver2 (~> 3)
-    mini_portile2 (2.8.5)
+    mini_portile2 (2.8.6)
     multi_json (1.15.0)
     multi_xml (0.6.0)
-    multipart-post (2.3.0)
-    nokogiri (1.15.5)
+    multipart-post (2.4.0)
+    nokogiri (1.16.4)
       mini_portile2 (~> 2.8.2)
       racc (~> 1.4)
     oauth2 (1.4.11)
@@ -71,37 +73,37 @@ GEM
       multi_json (~> 1.3)
       multi_xml (~> 0.5)
       rack (>= 1.2, < 4)
-    psych (5.1.1.1)
+    psych (5.1.2)
       stringio
-    public_suffix (5.0.4)
+    public_suffix (5.0.5)
     racc (1.7.3)
-    rack (3.0.8)
+    rack (3.0.10)
     rainbow (3.1.1)
-    rake (13.1.0)
+    rake (13.2.1)
     rchardet (1.8.0)
-    rdoc (6.6.0)
+    rdoc (6.6.3.1)
       psych (>= 4.0.0)
-    rspec (3.12.0)
-      rspec-core (~> 3.12.0)
-      rspec-expectations (~> 3.12.0)
-      rspec-mocks (~> 3.12.0)
-    rspec-core (3.12.2)
-      rspec-support (~> 3.12.0)
-    rspec-expectations (3.12.3)
+    rspec (3.13.0)
+      rspec-core (~> 3.13.0)
+      rspec-expectations (~> 3.13.0)
+      rspec-mocks (~> 3.13.0)
+    rspec-core (3.13.0)
+      rspec-support (~> 3.13.0)
+    rspec-expectations (3.13.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.12.0)
+      rspec-support (~> 3.13.0)
     rspec-its (1.3.0)
       rspec-core (>= 3.0.0)
       rspec-expectations (>= 3.0.0)
-    rspec-mocks (3.12.6)
+    rspec-mocks (3.13.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.12.0)
-    rspec-support (3.12.1)
+      rspec-support (~> 3.13.0)
+    rspec-support (3.13.1)
     ruby2_keywords (0.0.5)
     semver2 (3.4.2)
     stringio (3.1.0)
     thread_safe (0.3.6)
-    zhexdump (0.0.2)
+    zhexdump (0.1.0)
 PLATFORMS
   ruby

data/README.md CHANGED Viewed

@@ -4,6 +4,10 @@ pedump    [![Build Status](https://travis-ci.org/zed-0xff/pedump.png?branch=mast
 News
 ----
 ```
+2024.04.20 - cli: add --set-dll-char to patch dll characteristics
+             pe: imphash calculation
+             cli: added --imphash option
+2024.01.15 - add "--set-os-version VER" cmdline option for patching OS version in PE header
 2023.12.04 - workaround IO.pread() not available on windows
 2021.02.18 - updated gems; changed open-uri to URI.open; enabled SSL on https://pedump.me/
 2020.08.09 - CLI: added resource extracting with --extract ID
@@ -74,6 +78,7 @@ Usage
         -I, --imports
         -E, --exports
         -V, --version-info
+            --imphash
             --packer
             --deep                       packer deep scan, significantly slower
         -P, --packer-only                packer/compiler detect only,
@@ -89,6 +94,8 @@ Usage
                                          ID: section:rva/0x1000 - section by RVA
                                          ID: section:raw/0x400  - section by RAW_PTR
             --va2file VA                 Convert RVA to file offset
+            --set-os-version VER         Patch OS version in PE header
+            --set-dll-char X             Patch IMAGE_OPTIONAL_HEADER32.DllCharacteristics
         -W, --web                        Uploads files to a https://pedump.me
                                          for a nice HTML tables with image previews,

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 0.6.7
1	+ 0.6.9