Skip to content
peid

Peid

PEiD is a popular portable executable identifier tool for Windows. It can detect most common packers, cryptors and compilers for PE files. Useful for malware analysis and reverse engineering.
Security & Privacy Malware Analysis
packer-detection executable-analysis reverse-engineering
Features Reviews Alternatives

PEiD: Portable Executable Identifier Tool

A popular portable executable identifier tool for Windows, detecting most common packers, cryptors and compilers for PE files, useful for malware analysis and reverse engineering.

What is Peid?

PEiD is a popular portable executable identifier and analysis tool for Windows operating systems. It is primarily used to detect packers, cryptors, and compilers used on executable PE files such as EXE and DLL files.

When analyzing an unknown executable file, especially in malware analysis or reverse engineering, it is important to identify any packaging or protection applied to the file. Packed or encrypted files need to be unpacked or decrypted first before the actual payload can be analyzed.

PEiD has an extensive built-in signature database to detect most common packers like UPX, ASProtect, Themida, as well as cryptors like CryptPE, Yoda's Crypter, etc. It can also identify compilers and programming languages used to build the executable file.

One of the key features of PEiD is its plugin architecture that allows users to write custom signatures and extend its detection capabilities. There is an active community behind PEiD updating its signature database for new and modified packers.

PEiD provides a user-friendly graphical interface to view the detection results. It has options to dump unpacked executable code, rebuild imports, and perform other advanced tasks. Overall, it is one of the essential tools for any malware analyst or reverse engineer working on Windows platform.

Peid Features

Features

  1. Detects most common packers, cryptors and compilers
  2. Lightweight and portable
  3. Supports a variety of file formats like EXE, DLL, OCX, SYS, etc.
  4. Plugin architecture allows extending functionality
  5. Command line interface available
  6. Integrates with other tools like OllyDbg

Pricing

  • Free
  • Open Source

Pros

Free and open source

Easy to use with intuitive interface

Fast scanning of files

Wide range of supported file types

Extendable via plugins

Works on all Windows platforms

Cons

Not updated recently, lacks support for latest packers/protectors

Limited configuration options

No support for 64-bit files

Prone to false positives

No built-in unpacking capabilities

Official Links

Reviews & Ratings

Login to Review
No reviews yet

Be the first to share your experience with peid!

Login to Review

The Best Peid Alternatives

View all peid alternatives with detailed comparison →

Top Security & Privacy and Malware Analysis and other similar apps like Peid

Here are some alternatives to Peid:

ExEinfo PE icon
ExEinfo PE
Suggest an alternative ❐

ExEinfo PE icon

ExEinfo PE

ExEinfo PE is a handy portable executable (PE) file analysis tool for Windows. It allows you to examine the contents and structure of PE files such as EXE, DLL, OCX, SYS, and more.With ExEinfo PE, you can extract extensive information about a PE file without needing to open it. It...
ExEinfo PE image

Related Software

Tunnelblick Tunnelblick
Bitwarden Bitwarden
1Password 1Password
Sandboxie Plus Sandboxie Plus
Auth0 Auth0
Tor Browser Tor Browser
OpenSSH OpenSSH
Hacker's Keyboard Hacker's Keyboard