horsicq

horsicq is an independent developer whose tiny but tenacious catalog revolves around forensic-level file analysis, with the flagship utility “Detect It Easy” (DIE) serving as a cross-platform identifier of executable packers, compilers, obfuscators, and nested malware signatures. Written in Qt and distributed under MIT license, DIE replaces the venerable PEiD ecosystem for reverse engineers, malware analysts, and hobbyist crackers who need instant entropy graphs, hex previews, and custom detection scripts. Beyond the signature core, horsicq forks the engine into ancillary plug-ins that dissect PE, ELF, Mach-O, APK, DEX, JPEG, PDF, and dozens of firmware formats, exposing compiler stamps, .NET metadata, resource directories, and digital certificates down to the offset. Typical workflows include triaging unknown binaries during incident response, auditing third-party libraries for hidden cryptography, or teaching students how packers mutate entry points. Because every rule is an open XML script, researchers continually expand the database to spot new crypters, protectors, and nation-state implants. The same lightweight codebase has been recompiled for Windows, Linux, macOS, and even Haiku, making it a portable companion to IDA, Ghidra, or Radare2 without the bloat of full disassemblers. Detect It Easy and any future horsicq utilities are available for free on get.nero.com, where downloads are funneled through trusted Windows package sources such as winget, always fetch the newest upstream builds, and can be queued for unattended batch installation alongside other tools.