ollydbg Questions
5
Solved
I don't know why this code isn't working properly:
#define UNICODE
#include <iostream>
#include <sstream>
#include <windows.h>
void main(void)
{
wchar_t* strData = L"CreateWin...
5
Solved
Correct me if I am wrong.
This is my understanding of JNZ and CMP.
JNZ - The jump WILL take place if the Z Flag is NOT zero (1)
CMP - If the two values are equal, the Z Flag is set (1) otherwise...
Bhayani asked 12/2, 2013 at 20:25
4
Solved
I tried to learn "Lena's reversing for newbies", when some trouble arise.
I start Pixtopian Book with ollyDbg, then try to have MessageBox with message about uregistered version.
Then i switch to O...
Perianth asked 16/2, 2014 at 10:21
1
IDA pro, x64Dbg, olldbg & windbg are used to Reverse Engineering purposes (as a Dissembler) and debugging.
What are the main differences between each?
Meanwhile asked 16/11, 2017 at 16:35
1
Solved
This is my C code
C:\Codes>gdb test -q
Reading symbols from C:\Codes\test.exe...done.
(gdb) list 1,15
1 #include<stdio.h>
2
3 int main()
4 {
5 int a = 12345;
6 int b = 0x12345;
7 printf("...
0
I have to go to a specific memory address in OllyDbg, and I can't find anything online (in this forum also).
How can I go to a specific address ?
So something that prompt me a window, that asks m...
Butylene asked 26/5, 2017 at 15:29
2
I would like to know if there is a way to crack C# Windows application with OllyDebug. I have simple my own CrackMe application written with Visual C# 2010 Express. When I open it with OllyDebug an...
2
How can I set a breakpoint for a button click using ollydbg?
i am trying to disable a button click on game client, so i want to set break point to catch the button click event.
is that possible to...
Gabo asked 10/6, 2014 at 9:59
3
Solved
I don't really understand how to get around IsDebuggerPresent. I think I am supposed to find the registers used for debugging and then set it to 0 to trick IsDebuggerPresent, but I don't know how t...
Fields asked 26/4, 2012 at 8:53
1
Solved
I am debugging a process and want to dump a chunk of memory, say from memory address 0x4160d8 to 0x4200d8, into a file.
How can I get a raw file that includes just the bytes? I tried to use the O...
2
Solved
I double clicked on EIP in register window,but seems un-editable.
Why is EIP special?How can I change it?
Cumbrous asked 30/9, 2010 at 7:58
1
Solved
Platform: Windows XP, average PE file
What defines CPU registers initial values on the very start of the application ?
On the screenshot below OllyDbg stopped at the application entry point. But CP...
Cormier asked 25/2, 2015 at 21:51
3
Solved
I am trying to learn more about assembly and disassembly.
My goal is to modify the way a specific address is being written using a debugger (olly). Preferably by incrementing it by a number (20, 50...
Orly asked 27/8, 2012 at 0:8
1
I've taken up cracking and reverse-engineering recently with the help of OllyDbg 2.01 and crackmes executables.
So in this particular crackme, I was scrolling through the commands and noticed a PU...
1
Solved
Does IDA Pro have a memory mapping functionality similar to that in OllyDbg? If so, I can't find it. I know there is that skinny bar at the top of the screen showing where you are in the address sp...
1
Solved
How can I get a memory map in Windbg similar to Ollydbg's memory map functionality? I want to see a list of the address space sequentially showing what is loaded into each range, ideally with memor...
1
I'm trying to use OllyDbg's "Execute Till User Code" feature (which is essential for me) but it never works.
I first tried it on a program which called MessageBoxA. When it called it I paused the ...
Ducks asked 15/6, 2013 at 12:13
1
Solved
When I debug any program with debugger (for example OllyDbg), in disassembled assembly code, I can see function names, for example:
push 0
call msvcrt.exit
How does the debugger know the functio...
1
Solved
I am a new user of OllyDbg and I cannot find a way to highlight the ASM code. I have checked the settings and it looks like the configuration is correct. Also, I have tried two versions of OllyDbg ...
1
Solved
OlyDbg version 2 was recently released. It now supports using the Microsoft Symbol Server for debugging:
It supports Microsoft compilers via dbghelp.dll. New is support for symbol server, stack ...
1
Solved
I downloaded the latest ollydbg 2.x version from its official site and some plugins from tuts4you. But how to enable/install the plugins?
Cob asked 29/1, 2013 at 1:22
1
Solved
I had olly 2 Beta which was working fine but it misses some old features of Olly 1 like Call stack window and also it doesn't works with any plugins. So i decided to switch to Olly 1.10.
The prob...
1
Solved
I am just learning Assembler and debugging skills in OllyDbg in order to learn how to use undocumented functions. Now I am having the following problem:
I have the following code part (from OllyDb...
Interlunation asked 2/6, 2012 at 10:13
1
Solved
I am trying to examine the assembly for an executable using WinDBG, but I am having a hard time getting to it. I want to set a breakpoint at the first instruction in my program, but when I try to d...
Stlaurent asked 25/5, 2012 at 18:29
2
Solved
I've been just wondering - how does one disassemble self-modifying binary? I guess you can't use olly or IDA because they are static disassemblers, correct? What happens with disassembler if you ju...
Limiter asked 25/4, 2012 at 18:35
1 Next >
© 2022 - 2024 — McMap. All rights reserved.