Results 1 to 3 of 3

Thread: Immunity Debugger v1.2

  1. #1
    nicolas.waisman
    Guest

    Immunity Debugger v1.2

    This release we include a flurry of new exciting features!

    We are proud to announce the first beta version of our free
    Vista Heap Library, which supports the new 'Freelist' and
    Low Fragmentation Chunk. Check out the new usage of the
    !heap command for more details.

    Also included in this release the new recognition library using
    heuristic patterns, with a huge database of known windows static
    functions. Immunity Debugger includes this library both as a
    PyCommand (use !recognize) and as a function for scripting
    (use searchFunctionByHeuristic).

    As an example usage, imagine you want to release your own script
    and set a breakpoint on a unnamed function which might move or
    change slightly across different versions of the program. Using
    Immunity Debugger's API you can get the heuristic out of the
    function and do:

    address = imm.searchFunctionByHeuristic( heuristic)
    imm.setBreakpoint( address )

    Finally, we include our own small version of peid called
    !findpacker using Ero Carrera's pefile and Bob's UserDB with
    around 1300 signatures for packers, cryptors and other loaders.

    Immunity is also moving the deadline for the PyCommands contest
    to the 10th of December to give you more time to use the new features.

    Thanks for using Immunity Debugger! We hope you enjoy this month's
    release. You+can upgrade your current Immunity Debugger by going to
    Help/Update or by directly downloading the new installer from
    http://debugger.immunityinc.com/register.html

    Don't forget to check out the Immunity Forum (http://forum.immunityinc.com)
    for more examples, feedback, cool screenshots, etc.

    Thanks
    Immunity Debugger Team


    1.20 Build 0
    October 1, 2007

    New Features:

    - Immunity Debugger API
    o immlib.getThreadId() method added: return the current debuggee thread id
    o immlib.getCallTree() method added: return the call tree for given
    address
    o immlib.setFocus() method added: focus ID window
    o immlib.isValidHandle() method added: check if a HWND is still valid
    o immlib.getInfoPanel() method added: get information from panel window
    and optionally receives a type flag to force the kind of comment
    fetched.
    o imm.findPacker() method added: find packers/cryptors on a file or a
    loaded module
    o imm.getMemoryPagebyOwner(): Find all the memory pages belonging to a
    module.
    o immlib.ps() returns two extra objects: the tcp list and the udp list
    o immlib.getComment() now will try to fetch all types of comments
    o Added new HOOKTYPE: PRE_BP_HOOK, hooks exactly before the breakpoint
    is hit (Decoding events timeline)
    o New Vista support for libheap
    o Custom Tables has "Clear Window" menu now
    o Added several methods from librecognize

    - PyCommands
    o findpacker added. (Use of findPacker to get Packers from a module)
    o recognize added. (Function Recognizing using heuristic patterns)
    o Hippie now can filter by heap
    o heap updated to work with new Vista Heap
    o Optimized code for stackvars (Memory usage reduction during runtime)


    - Core
    o Pyshell can be focused once created with alt-F11
    o Shortcut for attach process added: Ctrl+F1
    o Added librecognition.py (Library for function recognizing)

    - Graph
    o immvcglib.generateGraphFromBuf() method added: play with your own vcg
    files!
    o Redesign of VCG parser: easier to read, easier to use.

    Bug Fixes:

    o Return value (HWND) of createTable
    o Fixed Attach Search Filtering :
    http://forum.immunityinc.com/index.php?topic=49.0
    o Grapher: Vertex lastline jumps correctly displayed now
    o Fixed crash when searching on modules:
    http://forum.immunityinc.com/index.php?topic=63.0
    o Fixed search issue on protected binary:
    http://forum.immunityinc.com/index.php?topic=34
    o Fixed breakpoint/logpoint hooks issue (logic/stepping inside a hook)
    o Fixed PyString_AsString() missbehaviour
    o Fixed PyCommand Gui Arguments box to receive \x00 as argument
    o Fixed imm.getModulebyAddress() to receive any module address and not only
    module entry point
    http://forum.immunityinc.com/index.php?topic=74.0
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #2

    sage

    ...not this again. I was hoping you'd actually keep your word and work on a proper version 2.0.

    First of all, 12MB+ for a friggin' debugger?
    Secondly, IT STILL PHONES HOME and it's adware too.
    Third, the help file is for version 1.0 and apparently you haven't even fixed it correctly:
    Immunity Debugger requires no installation. Simply create new folder and unpack archive Odbg110.zip to this folder. If necessary, drag-and-drop Immunity Debugger.exe to the desktop to create shortcut.
    Still very much DO NOT WANT.

  3. #3
    you still dont beat goodŽnŽold ollydbg with ollyperl (that dont have adware, as a side bonus)

Similar Threads

  1. Immunity Debugger v1.4
    By nicolas.waisman in forum Tools of Our Trade (TOT) Messageboard
    Replies: 6
    Last Post: March 28th, 2008, 23:29
  2. Immunity Debugger v1.4
    By OpenRCE_nicowow in forum Blogs Forum
    Replies: 0
    Last Post: February 5th, 2008, 00:12
  3. Immunity Debugger is now released!
    By OpenRCE_nicowow in forum Blogs Forum
    Replies: 0
    Last Post: November 24th, 2007, 18:50
  4. Immunity Debugger v1.1
    By nicolas.waisman in forum Tools of Our Trade (TOT) Messageboard
    Replies: 3
    Last Post: September 4th, 2007, 00:03
  5. Immunity Debugger is now released!
    By nicolas.waisman in forum Tools of Our Trade (TOT) Messageboard
    Replies: 23
    Last Post: August 27th, 2007, 07:26

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •