RubyGems - pedump - Versions diffs - 0.6.7 → 0.6.9 - Mend

pedump 0.6.7 → 0.6.9

Files changed (14) hide show

checksums.yaml +4 -4
data/Gemfile.lock +27 -25
data/README.md +7 -0
data/VERSION +1 -1
data/data/ordlookup/oleaut32.dll.yml +796 -0
data/data/ordlookup/pefile2json.py +17 -0
data/data/ordlookup/ws2_32.dll.yml +234 -0
data/data/ordlookup/wsock32.dll.yml +234 -0
data/lib/pedump/cli.rb +65 -6
data/lib/pedump/ordlookup.rb +19 -0
data/lib/pedump/pe.rb +4 -2
data/lib/pedump.rb +28 -0
data/pedump.gemspec +19 -28
metadata +8 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9ba70619b5754fa0d8c35a0d9d229b78074096e11438678784f7735686101c93
-  data.tar.gz: 37d5785c6a3c9e411c2b3fe8359f216cea26c0084b8a1bcdf2df18f745654190
+  metadata.gz: 71cf1d5280d69bb55528610be1281415edb247ab051dc30e8f473deb3478b2e2
+  data.tar.gz: f35b57ee5d35f2ebffbef16904ed0393f29b5eea1b235e43f13fced736826401
 SHA512:
-  metadata.gz: a3bbd37ffaaf1328c13d10d1a764cd3d685e6c4364d6fb5ab4bfd787f51e135b9b284572f88828a73c8ae3fb381646e9044508c6dc9eeff6f8b5d348e8d75474
-  data.tar.gz: 9303ed13e74f33c607622a7497d7635718696e28b44dd0027d3ca353aa62474621b264609971ee80917da4b4c458903a9b227ebd9b3761a4ccf0d5fad2df00f0
+  metadata.gz: d2d43650cebbda5b18cfc215460ce7b6bc077f0488a40bec3cb24fbbb941b02acb29a5ee0345b17faa274780f01531847b37b89fe419eacd094d8f507ea402f3
+  data.tar.gz: c5137537e4fe3a27250131012e7d4214e793f4ab648ad7f0ead40a3e6305aea01e8a4760bd503cc887ed0617f18750ea193a7caadb4f500e2aede86b713b1565

data/Gemfile.lock CHANGED Viewed

@@ -1,13 +1,14 @@
 GEM
   remote: https://rubygems.org/
   specs:
-    addressable (2.8.5)
+    addressable (2.8.6)
       public_suffix (>= 2.0.2, < 6.0)
     awesome_print (1.9.2)
+    base64 (0.2.0)
     builder (3.2.4)
     descendants_tracker (0.0.4)
       thread_safe (~> 0.3, >= 0.3.1)
-    diff-lcs (1.5.0)
+    diff-lcs (1.5.1)
     faraday (1.10.3)
       faraday-em_http (~> 1.0)
       faraday-em_synchrony (~> 1.0)
@@ -31,7 +32,7 @@ GEM
     faraday-patron (1.0.0)
     faraday-rack (1.0.0)
     faraday-retry (1.0.3)
-    git (1.18.0)
+    git (1.19.1)
       addressable (~> 2.8)
       rchardet (~> 1.8)
     github_api (0.19.0)
@@ -41,7 +42,7 @@ GEM
       hashie (~> 3.5, >= 3.5.2)
       oauth2 (~> 1.0)
     hashie (3.6.0)
-    highline (2.1.0)
+    highline (3.0.1)
     iostruct (0.0.5)
     juwelier (2.4.9)
       builder
@@ -55,14 +56,15 @@ GEM
       rake
       rdoc
       semver2
-    jwt (2.7.1)
+    jwt (2.8.1)
+      base64
     kamelcase (0.0.2)
       semver2 (~> 3)
-    mini_portile2 (2.8.5)
+    mini_portile2 (2.8.6)
     multi_json (1.15.0)
     multi_xml (0.6.0)
-    multipart-post (2.3.0)
-    nokogiri (1.15.5)
+    multipart-post (2.4.0)
+    nokogiri (1.16.4)
       mini_portile2 (~> 2.8.2)
       racc (~> 1.4)
     oauth2 (1.4.11)
@@ -71,37 +73,37 @@ GEM
       multi_json (~> 1.3)
       multi_xml (~> 0.5)
       rack (>= 1.2, < 4)
-    psych (5.1.1.1)
+    psych (5.1.2)
       stringio
-    public_suffix (5.0.4)
+    public_suffix (5.0.5)
     racc (1.7.3)
-    rack (3.0.8)
+    rack (3.0.10)
     rainbow (3.1.1)
-    rake (13.1.0)
+    rake (13.2.1)
     rchardet (1.8.0)
-    rdoc (6.6.0)
+    rdoc (6.6.3.1)
       psych (>= 4.0.0)
-    rspec (3.12.0)
-      rspec-core (~> 3.12.0)
-      rspec-expectations (~> 3.12.0)
-      rspec-mocks (~> 3.12.0)
-    rspec-core (3.12.2)
-      rspec-support (~> 3.12.0)
-    rspec-expectations (3.12.3)
+    rspec (3.13.0)
+      rspec-core (~> 3.13.0)
+      rspec-expectations (~> 3.13.0)
+      rspec-mocks (~> 3.13.0)
+    rspec-core (3.13.0)
+      rspec-support (~> 3.13.0)
+    rspec-expectations (3.13.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.12.0)
+      rspec-support (~> 3.13.0)
     rspec-its (1.3.0)
       rspec-core (>= 3.0.0)
       rspec-expectations (>= 3.0.0)
-    rspec-mocks (3.12.6)
+    rspec-mocks (3.13.0)
       diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.12.0)
-    rspec-support (3.12.1)
+      rspec-support (~> 3.13.0)
+    rspec-support (3.13.1)
     ruby2_keywords (0.0.5)
     semver2 (3.4.2)
     stringio (3.1.0)
     thread_safe (0.3.6)
-    zhexdump (0.0.2)
+    zhexdump (0.1.0)
 PLATFORMS
   ruby

data/README.md CHANGED Viewed

@@ -4,6 +4,10 @@ pedump    [![Build Status](https://travis-ci.org/zed-0xff/pedump.png?branch=mast
 News
 ----
 ```
+2024.04.20 - cli: add --set-dll-char to patch dll characteristics
+             pe: imphash calculation
+             cli: added --imphash option
+2024.01.15 - add "--set-os-version VER" cmdline option for patching OS version in PE header
 2023.12.04 - workaround IO.pread() not available on windows
 2021.02.18 - updated gems; changed open-uri to URI.open; enabled SSL on https://pedump.me/
 2020.08.09 - CLI: added resource extracting with --extract ID
@@ -74,6 +78,7 @@ Usage
         -I, --imports
         -E, --exports
         -V, --version-info
+            --imphash
             --packer
             --deep                       packer deep scan, significantly slower
         -P, --packer-only                packer/compiler detect only,
@@ -89,6 +94,8 @@ Usage
                                          ID: section:rva/0x1000 - section by RVA
                                          ID: section:raw/0x400  - section by RAW_PTR
             --va2file VA                 Convert RVA to file offset
+            --set-os-version VER         Patch OS version in PE header
+            --set-dll-char X             Patch IMAGE_OPTIONAL_HEADER32.DllCharacteristics
         -W, --web                        Uploads files to a https://pedump.me
                                          for a nice HTML tables with image previews,

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 0.6.7
1	+ 0.6.9