From Collaborative RCE Tool Library

Jump to: navigation, search

OllyHeapTrace

Tool name: OllyHeapTrace
  • Currently3.6666666666667/5
  • 1
  • 2
  • 3
  • 4
  • 5
Rating: 3.7 (3 votes)
Author: Stephen Fewer                        
Website: http://www.harmonysecurity.com/OllyHeapTrace.html
Current version: 1.0
Last updated: February 23, 2008
Direct D/L link: Locally archived copy
License type:
Description: OllyHeapTrace is a plugin for OllyDbg (version 1.10) to trace the heap operations being performed by a process. It will monitor heap allocations and frees for multiple heaps, as well as operations such as creating or destroying heaps and reallocations. All parameters as well as return values are recorded and the trace is highlighted with a unique colour for each heap being traced.

The primary purpose of this plugin is to aid in the debugging of heap overflows where you wish to be able to control the heap layout to overwrite a specific structure such as a chunk header, critical section structure or some application specific data. By tracing the heap operations performed during actions you can control (for example opening a connection, sending a packet, closing a connection) you can begin to predict the heap operations and thus control the heap layout.
Related URLs: No related URLs have been submitted for this tool yet


Screenshot:
Screenshot of OllyHeapTrace


RSS feed Feed containing all updates for this tool.

Here below you will find useful notes about this tool, left by other users.

You are welcome to add your own useful notes here, or edit any existing notes to improve or extend them.


Great Plugin!

Many times happened that Heap Tracing plugins for Olly faulted when I've worked with large ammounts of data, or with big programs.

This little great tool works perfectly, and is an Hand God for Heap Overflow Hunting!




If you find that any information for the tool above is missing, outdated or incorrect, please edit it!
(please also edit it if you think it fits well in some additional category, since this can also be controlled)


Views
Category Navigation Tree
   Code Coverage Tools  (13)
   Code Ripping Tools  (2)
   Helper Tools  (3)
   Hex Editors  (13)
   Memory Patchers  (7)
   Packers  (19)
   Profiler Tools  (11)
   String Finders  (10)
   Tool Hiding Tools  (7)
   Tracers  (20)
   Needs New Category  (3)