Results 1 to 12 of 12

Thread: New tool of our trade: windbg

  1. #1
    Snatch
    Guest

    New tool of our trade: windbg

    Yes folks. First of all lets not flame this thread with a bunch of "MICRO$OFT $UX AND SO DO ALL BLAH BLAH". Ya I think we are grown up enough to be rational and not a little emotional because we hate big companies or whatever our personal issues are. Anyway I have been using Windbg (get the latest from http://www.microsoft.com/ddk/debugging) and I have been very impressed. Doesnt crash the OS and it has a very powerful command interface. Download the symbol pack too and your talking about an easy to use multitasking good solid debugger. Maybe others havent had my luck but I would say it has good functionality and features. It is a great softice substitute unless you are debugging very low level code. For most applications it will work fine and be less obtrusive than softice. I havent used OllyDbg but I dont see how they could do any better than this.

    Snatch
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #2

    I second that.

    Ditto.

    With or without the debug symbols.

    BTW, did you know that you can use WinDBG as a profiler (crude) that does not need any code except an IDA MAP file (formatted, o course)?

    It records all functions (as present in the IDA MAP file) that get executed during an apps running. Great, if your app is in Delphi/VB or for that matter, even in ASM, to see which function(s) are called, in what order and more important, which functions to ignore for target's protection, as uncalled ones cannot have protection in them...

    ...Have Phun
    Blame Microsoft, get l337 !!

  3. #3
    foxthree
    Guest

    2 machines...

    Err... clear me if I'm wrong but doesn't WinDbg require 2 machines one the target debugee and other the development system and both connected either via Network or Serial port.

    Signed,
    -- FoxThree
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  4. #4

    Nope

    ONLY and only if you are debugging SYSTEM components (read that as KERNEL level) and not applications.

    ...Have Phun
    Blame Microsoft, get l337 !!

  5. #5
    Snatch
    Guest
    Did not know that but I cant wait to try it out .

    Snatch
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  6. #6
    fjrp2
    Guest

    Smile

    Hi, this is my first post

    If been used windbg also, I found a reference to it in one of +reverserīs tuts for newbies (cracking for dummies, I think or filemon... anyway they are ALL great)

    I have seen a thread about CodeView also, and i would like to say that, in my opinion, WinDBG is a port to WIMP IDE of CV
    They all feel the same.
    Or thatīs what I think.

    Anyway, great messageboard

    This is THE messageboard.
    (I feel like a reversert )
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  7. #7
    IcyDee
    Guest
    (I feel like a reverser(t) )
    So do I, but how are we going to find one of them at this time of day around here!
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  8. #8
    golden_123
    Guest

    tut

    Is there a tut on cracking with winddbg somewhere
    thx
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  9. #9
    fjrp2
    Guest

    Wink

    Yes, If told tou: both lesson of Cracking for dummies use them.
    Search in fravias' Ancient Castle.
    You have the link down here
    (And also from tsehp )

    You can also have a look at the databese at:
    h**p://w*w.msdn.com
    (they are a little bit old, anyway )
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  10. #10
    Alvin777
    Guest

    Re: I second that.

    Originally posted by Aimless
    Ditto.

    With or without the debug symbols.

    BTW, did you know that you can use WinDBG as a profiler (crude) that does not need any code except an IDA MAP file (formatted, o course)?


    ...Have Phun
    How to attach .map file to debug session?
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  11. #11
    xxxxx
    Guest

    Just try it, then you never say something so stupid

    I din't try it but he can't do that ccc...........
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  12. #12
    Alvin777
    Guest

    Re: Just try it, then you never say something so stupid

    Originally posted by xxxxx
    I din't try it but he can't do that ccc...........
    You should read my question as "How to convert .dbg file to something understandable by WinDBG"
    I promise that I have read the FAQ and tried to use the Search to answer my question.

Similar Threads

  1. Replies: 5
    Last Post: May 7th, 2014, 15:49
  2. windbg and SSDT
    By WaxfordSqueers in forum Tools of Our Trade (TOT) Messageboard
    Replies: 2
    Last Post: July 7th, 2013, 01:32
  3. windbg .breakin failed
    By tadasv in forum Tools of Our Trade (TOT) Messageboard
    Replies: 0
    Last Post: June 26th, 2009, 22:56
  4. windbg final 6.4.7.2
    By 0rp in forum Tools of Our Trade (TOT) Messageboard
    Replies: 2
    Last Post: January 24th, 2005, 09:05
  5. how to use symbols just like windbg
    By a1rsupp1y in forum OllyDbg Support Forums
    Replies: 1
    Last Post: November 27th, 2003, 22:33

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •