Stay Updated With Facebook
Please Click Like Button

Receive Free Updates (EMail):

Powered By FOCSoft

close

All Hacking Tools And Hacking Tutorials Are Only For Education Purposes,..

DLL Relocation Finder v1.5 Full Free Download - FOCSoft

Unknown  Hacking-Tools  No comments

 
  

DLL Relocation Finder is the command-line Tool to detect and list Relocated DLLs in the Process.

Every DLL specifies a base address where it should be mapped during load time. However if that address is occupied by some other DLL then this DLL has to be relocated to new base address. This is called DLL Relocation or DLL Rebasing. This relocation process also happens for ASLR enabled modules.

In such cases, DLL Relocation Finder helps you to find these relocated DLLs and their new addresses. It also provides option to list only relocated or non-relocated or both type of DLLs.

Here are some of the practical observations w.r.t DLL Relocation

  • On pre-Vista systems (winxp, win2k3) very few DLLs are relocated
  • On post-Vista systems (vista, win7, win8) almost all the DLLs are relocated
  • Also majority of the system DLLs are relocated to same new address across different processes (may vary in certain cases).

Being a command-line tool makes it easy to automate through scripting. Also it can be useful tool for researchers & developers.

It is fully portable and contain separate versions for 32-bit and 64-bit systems.It works on all the platforms starting from Windows XP to Windows 8.
How to use?

DLL Relocation Finder is very easy to use tool. It is command-line/console based tool, hence you have to launch it from the command prompt (cmd.exe).

Here is the simple usage information
[For 32-bit Systems]
DLLRelocationFinder32.exe [-r | -n] [ | ]
[For 64-bit Systems]
DLLRelocationFinder64.exe [-r | -n] [ | ]
 
Examples of DLL Relocation Finder
//Show all the DLLs in the Process with pid 1151
DLLRelocationFinder.exe 1151
//Show all the DLLs in the Process 'chrome.exe'
DLLRelocationFinder.exe chrome.exe
//Show only Relocated DLLs from Process 1151
DLLRelocationFinder.exe -r 1151
//Show only Relocated DLLs from Process 'chrome.exe'
DLLRelocationFinder.exe -r chrome.exe
//Show only Non-Relocated DLLs from Process 1151
DLLRelocationFinder.exe -n 1151
//Show only Non-Relocated DLLs from Process 'chrome.exe'
DLLRelocationFinder.exe -n chrome.exe
//Show this help screen
DLLRelocationFinder.exe -h
Note that it includes both 32-bit (DLLRelocationFinder32.exe) and 64-bit version (DLLRelocationFinder64.exe). On 64-bit operating systems, you have to use the 64-bit version.
Screenshots
 
Download

FREE Download DLL Relocation Finder v1.5

License  : Freeware
Platform : Windows XP, Vista, Windows 7, Windows 8

Please Share This Post With Your Frinds :) FOCSoft
SOCIALIZE IT →
FOLLOW US →
SHARE IT →

0 Comments:

Post a Comment

If you're having issues, Please leave an email address I can contact you on -
I advise you to also "subscribe to the comment feed" and get email updates when I respond to your question.

Hyperlinks are not allowed, Spam/advertising comments will NEVER BE TOLERATED and will be deleted immediately!

Thanks for reading,
Administrator Of FOCSoft

Subscribe to: Post Comments (Atom)

 

Copyright © 2013 FOCSOFT All Rights Reserved By:- Muhammad Shahbaz