Ollydbg prepare for battle - 16 Марта 2011

Main » » Ollydbg prepare for battle

11:30

Ollydbg prepare for battle

On Ole

debugger OllyDbg is a debugger level ring 3, ie user. At the time of this writing, release version 1.10 and older version of a new, completely rewritten c zero, version 2.00k. What are advantages of this debugger? Lightweight, flexible change the functionality of plug-ins, easy to operate. Restrictions imposed by ring 3 - we are unlikely to debug the driver, but you can download them as normal dll and debug in parts. There is a possibility to load debug information from IdaPro. Just pretty handy you can change the code and data directly in the debugger with the ability to save.

Plug-essentials

When you start the debugger, so to speak, out of the box there is some difficulty in managing them, but setting a few basic plug-ins, it becomes almost a perfect system where everything is at hand.
So in order:

CommandBar - adds a small panel with the console, which is quite often will be used for quick set break points, moving from memory, and other amenities.
ODbgscript - not least, Extension: allows you to write your own scripts to automate some operations (such as a script extractor Asprotect all versions, written by fellow Volx)
Phantom, StrongOD, HideOD, HideDebugger - plugins, either partially or completely hide the debugger from the system debugging process, and more. When properly configured, you can even debug the monsters of different defenses, which is full of anti-debugging process.

After this minimum, the debugger is more than ready for battle. They became easy to use, and no problems with excessive search for anti-debugging.

Registration

When you first start ollydbg meets us fairly dull monotonous design and milky-white, with no syntax highlighting. It's all problem can be solved by selecting the shortcut menu themes, but there is not a great choice - either cold boring topic, or vice versa Pestryaev like a parrot. And as you know both complicates the perception of information that greatly reduces the efficiency of debugging. But we must pay tribute to developers, nearly all of the debugger is customizable.

I would like to offer my working version, which I worked for two years. Colors are chosen as the soft, bright lights of some blocks of code, attracts attention at first to more important things, more options in a gray scale.

To do this in a file ollydbg.ini need to change the following lines:
[Colours]
...here the standard color ...
Scheme name [7] = Veliant Sheme
Scheme [7] = 15,12,7,0,4,10,7,13

[Syntax]
...here the standard color ...
Commands [4] = 15,15,12,12,11,14,12,15,15,7,12,0,0,0
Operands [4] = 1,3,15 , 15,8,8,10,6,0,0,0,0,0,0
Scheme name [4] = Veliant Sheme

Download the debugger itself from the official website ollydbg.de
Plug-ins and additional information can be found for example in the resource cracklab.ru

The author does not recommend to do debugging third-party programs, and removes all responsibility from himself.

Views: 566 | Added by: w1zard | Rating: 0.0/0

Total comments: 0


Имя *:
Email *:

Код *: