OllyDbg is a shareware, but you can download and use it for free.
Special highlights are:
- Intuitive user interface, no cryptical commands
- Code analysis - traces registers, recognizes procedures, loops, API calls, switches, tables, constants and strings
- Directly loads and debugs DLLs
- Object file scanning - locates routines from object files and libraries
- Allows for user-defined labels, comments and function descriptions
- Understands debugging information in Borland® format
- Saves patches between sessions, writes them back to executable file and updates fixups
- Open architecture - many third-party plugins are available
- No installation - no trash in registry or system directories
- Debugs multithread applications
- Attaches to running programs
- Configurable disassembler, supports both MASM and IDEAL formats
- MMX, 3DNow! and SSE data types and instructions, including Athlon extensions
- Full UNICODE support
- Dynamically recognizes ASCII and UNICODE strings - also in Delphi format!
- Recognizes complex code constructs, like call to jump to procedure
- Decodes calls to more than 1900 standard API and 400 C functions
- Gives context-sensitive help on API functions from external help file
- Sets conditional, logging, memory and hardware breakpoints
- Traces program execution, logs arguments of known functions
- Shows fixups
- Dynamically traces stack frames
- Searches for imprecise commands and masked binary sequences
- Searches whole allocated memory
- Finds references to constant or address range
- Examines and modifies memory, sets breakpoints and pauses program on-the-fly
- Assembles commands into the shortest binary form
- Starts from the floppy disk
OllyDbg is often used for reverse engineering of programs.[3] It is often used by crackers tocrack software made by other developers. For cracking and reverse engineering, it is often the primary tool because of its ease of use and availability.[4] It is also useful for programmers to ensure that their program is running as intended. Also it is used for malware analysis purposes.
Changes made to OllyDbg:
Files
Odbg200.zip
Odbg110.zip
Odbg108b.zip
Plug110.zip
Disasm.zip
Cmdline.zip
Tutorials
Run trace (zip)
Load DLL (zip)
Visit Website for more information-
http://ollydbg.de/
http://en.wikipedia.org/wiki/OllyDbg
Changes made to OllyDbg:
·
Correct reaction on MOV SS,anything;
PUSHF depending on the preceding comparison
·
Correct reaction on disassembling of JE
vs. JZ depending on the preceding comparison
·
Eliminated nasty crashes that happened
on some computers while invoking menu, or pressing ALT, or on similar harmless
actions.
·
Plugin interface is slightly extended.
Plugin API includes more than 500 functions, structures and variables.
Files
Odbg200.zip
Odbg110.zip
Odbg108b.zip
Plug110.zip
Disasm.zip
Cmdline.zip
Tutorials
Run trace (zip)
Load DLL (zip)
Visit Website for more information-
http://ollydbg.de/
http://en.wikipedia.org/wiki/OllyDbg
0 comments:
Post a Comment