Welcome to the new Woodmann RCE Messageboards Regroupment
Please be patient while the rest of the site is restored.

To all Members of the old RCE Forums:
In order to log in, it will be necessary to reset your forum login password ("I forgot my password") using the original email address you registered with. You will be sent an email with a link to reset your password for that member account.

The old vBulletin forum was converted to phpBB format, requiring the passwords to be reset. If this is a problem for some because of a forgotten email address, please feel free to re-register with a new username. We are happy to welcome old and new members back to the forums! Thanks.

All new accounts are manually activated before you can post. Any questions can be PM'ed to Kayaker.

Which debug tool can support "EBFE" break under Linux?

Interesting low-level stuff, operating system related issues, packer/vx acrobatics, drivers and non-newbie programming in general, including win32 assembly and whatever else.
Locked
joyung
Member
Posts: 48
Joined: Thu Apr 21, 2011 10:56 pm

Which debug tool can support "EBFE" break under Linux?

Post by joyung »

There is ELF file that call .so dynamic library, I want set "EBFE" to make the run break at the entrance of the .so file, any debug tool can support this? Whether IDA remote Linux debug can do this?

I know on windows platform, ollydbg can do this, and F12 to jump to the entrance, just want to know whether can do similiar way under Linux.
blabberer
Senior Member
Posts: 1535
Joined: Wed Dec 08, 2004 11:12 am

Post by blabberer »

ebfe is a mnemonic it is a jmp instruction to processor

every os needs processor so every os including linux and every debuggers even that of linux will support EBFE

[ATTACH]2920[/ATTACH]
Attachments
ebfe.PNG
User avatar
disavowed
Posts: 1290
Joined: Mon Apr 01, 2002 3:00 pm

Post by disavowed »

blabberer wrote:ebfe is a mnemonic it is a jmp instruction to processor

every os needs processor so every os including linux and every debuggers even that of linux will support EBFE
For x86/x64, yes. Though different machine code would be required for different processor families.
joyung
Member
Posts: 48
Joined: Thu Apr 21, 2011 10:56 pm

Post by joyung »

Dear blabberer,

Yes, really that way, thanks.
joyung
Member
Posts: 48
Joined: Thu Apr 21, 2011 10:56 pm

Post by joyung »

Thank you, disavower. I try edb, but still some in-convenient compared with ollydbg under windows.
User avatar
disavowed
Posts: 1290
Joined: Mon Apr 01, 2002 3:00 pm

Post by disavowed »

If you want a GUI, use EDB (http://www.woodmann.com/collaborative/t ... x_Debugger) or IDA Pro.
Locked