Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 10-29-2012, 22:26
cybercoder cybercoder is offline
Friend
 
Join Date: Aug 2005
Posts: 114
Rept. Given: 2
Rept. Rcvd 11 Times in 8 Posts
Thanks Given: 22
Thanks Rcvd at 46 Times in 31 Posts
cybercoder Reputation: 11
Where to start?

Hi all, havent been around for quite a while and have fallen behind a fair bit in reversing. would like some advice on what tools i should use these days. I suppose OllyDBG is still okay to use but on windows 7 there seems to be some issues same as imprec.. yep as you can see im probably miles behind.. any advice would be greatly appreciated.
Reply With Quote
  #2  
Old 10-30-2012, 02:21
chessgod101's Avatar
chessgod101 chessgod101 is offline
Co-Administrator
 
Join Date: Jan 2011
Location: United States
Posts: 535
Rept. Given: 2,218
Rept. Rcvd 691 Times in 219 Posts
Thanks Given: 700
Thanks Rcvd at 939 Times in 186 Posts
chessgod101 Reputation: 500-699 chessgod101 Reputation: 500-699 chessgod101 Reputation: 500-699 chessgod101 Reputation: 500-699 chessgod101 Reputation: 500-699 chessgod101 Reputation: 500-699
Hello cybercoder. I know all too well how difficult it is to get back up to speed after taking an extended leave from reverse engineering.

Ollydbg is still the best choice for x32 debugging, in my opinion. The new 2.0 version is becoming quite popular. It probably works better on an x64 computer(for debugging x32 targets) than version 1.10. If you are like me and prefer version 1.10, I suggest using the x64 compatibility mode setting in the Olly Advanced plugin.

If you are interested in debugging x64 applications, I would suggest trying the new Bugdbg. Though it is in a Pre-alpha stage, many are suggesting that it is quite powerful:
Code:
http://forum.exetools.com/showthread.php?t=14539

For import reconstruction, I will recommend Scylla. It works seamlessly on windows 7.
Code:
http://forum.exetools.com/showthread.php?t=13792
__________________
"As the island of our knowledge grows, so does the shore of our ignorance." John Wheeler
Reply With Quote
  #3  
Old 10-30-2012, 17:56
Syoma Syoma is offline
reverse engineer
 
Join Date: May 2009
Posts: 338
Rept. Given: 35
Rept. Rcvd 77 Times in 50 Posts
Thanks Given: 15
Thanks Rcvd at 78 Times in 51 Posts
Syoma Reputation: 77
IDAPro+IDAStealth as debugger works very well. ImpRec also works fine for 32-bit applications, but Scylla can be used for both 32-bit and 64-bit applications.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
ICELicense - no idea where to start *RemedY* General Discussion 10 11-07-2004 00:27
writing my own OS.....where to start from?? loman General Discussion 33 06-29-2004 18:09


All times are GMT +8. The time now is 18:46.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )