Windows Object Explorer 64-bit (WinObjEx64)

Forum for announcements and questions about tools and software.
User avatar
EP_X0FF
Global Moderator
Posts: 4792
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Re: Windows Object Explorer 64-bit (WinObjEx64)

Post by EP_X0FF » Mon Mar 14, 2016 4:43 pm

Update 1.4.2 with driver list + driver dump.

https://github.com/hfiref0x/WinObjEx64
Ring0 - the source of inspiration

User avatar
EP_X0FF
Global Moderator
Posts: 4792
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Re: Windows Object Explorer 64-bit (WinObjEx64)

Post by EP_X0FF » Thu Jun 23, 2016 2:25 pm

Windows Defender identified binary as Win32/Spallowz.A!cl trojan.

https://github.com/hfiref0x/WinObjEx64/issues/1

Since this is "generic detection" name irrelevant. False positive, rage quit.
Ring0 - the source of inspiration

User avatar
EP_X0FF
Global Moderator
Posts: 4792
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Re: Windows Object Explorer 64-bit (WinObjEx64)

Post by EP_X0FF » Thu Mar 15, 2018 6:23 am

Current version 1.5.3 from 8 March 2018
https://github.com/hfiref0x/WinObjEx64/ ... r/Compiled

Release 1.5.0 from 22 Sep 2017
https://github.com/hfiref0x/WinObjEx64/releases

Changelog since last posted information in this thread:

v 1.5.0
added Partition, DxgkCurrentDxgProcessObject objects description
added mailslots viewer dialog
added file properties for drivers (menu -> extras -> Drivers)
added FltConnectionPort object dump
switched to hde instead of ldasm
fixed Wine behavior along with some bugs

v 1.5.1, 1.5.2
are bugfixes/refactoring mostly

v 1.5.3
provides workaround for issue found by diversenok
Ring0 - the source of inspiration

User avatar
EP_X0FF
Global Moderator
Posts: 4792
Joined: Sun Mar 07, 2010 5:35 am
Location: Russian Federation
Contact:

Re: Windows Object Explorer 64-bit (WinObjEx64)

Post by EP_X0FF » Thu Aug 16, 2018 8:03 am

v1.5.4

Added display of Process Trust Label for Directory object type.

Links same as above.
Ring0 - the source of inspiration

Post Reply