Exetools

Exetools (https://forum.exetools.com/index.php)
-   Community Tools (https://forum.exetools.com/forumdisplay.php?f=47)
-   -   OllyDBG v1.10 plugin -StrongOD v0.4.5 [2011.08.10 v0.4.5.808] (https://forum.exetools.com/showthread.php?t=12967)

ZeNiX 08-29-2010 10:59

OllyDBG v1.10 plugin -StrongOD v0.4.5 [2011.08.10 v0.4.5.808]
 
1 Attachment(s)
We collect StrongOD plugins here.

Thanks to fengyue my friend.

xtiaoshi 08-29-2010 14:51

It was a beautiful world.

ahmadmansoor 08-29-2010 15:18

Thanks ZeNix and many thanks for fengyue too

besoeso 08-29-2010 18:48

Can anyone upload in external link?

xtiaoshi 08-29-2010 19:45

_http://rghost.net/2474387

fly [CUG] 09-02-2010 14:42

Great OD plugin.It's helpful.Thank you,and Thanks fengyue.

ZeNiX 10-11-2010 10:29

[2010.10.10 v0.3.7.666]
 
1 Attachment(s)
OllyDBG v1.10 plugin - StrongOD v0.3.7
by 海风月影[CUG]
====================================================================
[2010.10.10 v0.3.7.666]
1,增强反反调试
2,修复部分BUG
3,执行脚本时,OD可以最小化


[2010.08.17 v0.3.6.650]
1,修复一个驱动可能的蓝屏BUG
2,防止OD被postmessage关闭
3,修复分析PE的一个BUG
4,驱动转移到数据段


[2010.06.24 v0.3.5.639]
1,Add AutoUpdate

[2010.06.13 v0.3.4.633]
1,优化解决OD调试卡死的BUG
2,驱动释放到插件目录
3,增加PatchOD功能,od所有窗口类名随机化,避免被检测
4,cmdbar的窗口名采用Draw的方式画出来,避免被检测
5,修复导入表处理的一处BUG
6,解决cmdbar与Ollyskin不兼容的问题

/////////////////////////////////////////////////////////////

下载地址:
http://sod.ibt.name/download/StrongOD%20v0.3.7.rar

或者把ollydbg.ini修改下面的内容
[Plugin StrongOD]
UpdateURL = http://sod.ibt.name/update.txt

Nexus6 10-17-2010 01:03

Is still needed a key to access all features?

I cannot get a key, I tried.

ZeNiX 10-20-2010 13:37

You do not need a key for the new versions.

ZeNiX 12-28-2010 15:52

StrongOD v0.3.9.704 (2010.12.27)
 
1 Attachment(s)
OllyDBG v1.10 plugin - StrongOD v0.3.9
by 海风月影[CUG]
====================================================================
[2010.12.27 v0.3.9.704]
1,增强反反调试
2,修复部分BUG
3,优化窗口刷新

[2010.10.10 v0.3.7.666]
1,增强反反调试
2,修复部分BUG
3,执行脚本时,OD可以最小化


[2010.08.17 v0.3.6.650]
1,修复一个驱动可能的蓝屏BUG
2,防止OD被postmessage关闭
3,修复分析PE的一个BUG
4,驱动转移到数据段


[2010.06.24 v0.3.5.639]
1,Add AutoUpdate

[2010.06.13 v0.3.4.633]
1,优化解决OD调试卡死的BUG
2,驱动释放到插件目录
3,增加PatchOD功能,od所有窗口类名随机化,避免被检测
4,cmdbar的窗口名采用Draw的方式画出来,避免被检测
5,修复导入表处理的一处BUG
6,解决cmdbar与Ollyskin不兼容的问题

/////////////////////////////////////////////////////////////

下载地址:
http://sod.ibt.name/download/StrongOD%20v0.3.9.rar

或者把ollydbg.ini修改下面的内容
[Plugin StrongOD]
UpdateURL = http://sod.ibt.name/update.txt

ZeNiX 12-29-2010 18:28

OllyDBG v1.10 plugin -StrongOD v0.3.9.706 (2010.12.29)
 
1 Attachment(s)
History is same as above.

LCF-AT 12-30-2010 03:45

Hello ZeNiX,

thanks for posting the new versions. :)
So I have test the version "2010.12.27 v0.3.9.704" and now the plugin its working good again.No more blue screens etc. :) Very good.

So now you have also attached again a newer version but without a update info.So can you post the update infos too in the future?So I know I can see the info in the readme.txt but I can not translate it...

This is what I can read in the readme file.Its not in the china language.
----------
[2010.12.29 v0.3.9.706]
1£¬ÔöÇ¿·´·´µ÷ÊÔ
2£¬ÐÞ¸´²¿·ÖBUG
3£¬ÓÅ»¯´°¿ÚË¢ÐÂ
----------

...I get no translate results.

Thanks

JeRRy 12-30-2010 06:42

Hello LCF-AT .

You can go to unpack.cn to view the changelog . But not an english though.
or you need to set "Chinese"' for Non-Unicode program in Regional and Language options . So you can view properly in notepad.

Anyway , here is the google translation of latest update .

[2010.12.29 v0.3.9.706]
1, enhanced debugging Fanfan
2, the repair part of the BUG
3, the optimization of the window to refresh

ZeNiX 12-30-2010 10:58

The update info of 706 is same as 704.
So, I guess that there is just a minor fix.

In fact, Fengyue would like me to translate those Chinese infomation into English with the release at EXETOOLS. But at the moment, I do not have time to check and translate it.

Is there someone who would like to help with English translation and updating of this plugin?

ZeNiX 12-30-2010 11:53

Difference between 0.3.9.704 and 0.3.9.706:

When we attach, some dll names might be listed in version 704.
In version 706, it shows main moudles only.

deltaforce 12-31-2010 16:08

Hello ZeniX,

thanks for share new versions.
Tested and works vey well.

dave_omirora 01-01-2011 18:40

Ollydbg Close
 
ZeNiX
I use the StrongOD.dll 0.3.9.704 and 0.3.9.706 with olly, and use the Hasp SRM protected any program open with it. then when use option of (Go to Address of Disassambler) then my ollydbg is close what problem did you tell me?

ZeNiX 01-04-2011 09:33

Do you mean the Ctrl-G closes OllyDBG?
Try to remove all plungings and use Original OllyDBG with StrongOD only.

Some features of StrongOD are not compatible with features of certain pungins, like advancedolly.dll.

By the way, the new StrongOD has a built-in cmdbar function.
So, cmdbar.dll is not required and is recommended to be removed.

Fyyre 01-05-2011 22:57

Quote:

Originally Posted by ZeNiX (Post 70939)
Do you mean the Ctrl-G closes OllyDBG?
Try to remove all plungings and use Original OllyDBG with StrongOD only.

Some features of StrongOD are not compatible with features of certain pungins, like advancedolly.dll.

By the way, the new StrongOD has a built-in cmdbar function.
So, cmdbar.dll is not required and is recommended to be removed.

I experience this too. Fix is simple:

OllyAdvanced w/ "Ctrl-G" option enabled + StrongOD with 'Ctrl-D' option enabled == ollydbg silently exit when you press ctrl-g

solution -> uncheck 'ctrl-g' option in ollyadv

-Fyyre

p.s. if you like how ollyadv Ctrl-G looks and not StrongOd's -- copy it from .rsrc and paste into strongod's .rsrc ...

pps.
Quote:

Originally Posted by ZeNiX (Post 70877)
Is there someone who would like to help with English translation and updating of this plugin?

I am happy to help you. however, I would be using google translate for this job...

-Fyyre

JeRRy 01-10-2011 11:57

1 Attachment(s)
StrongOD v0.4.0.712

[2011.01.10 v0.4.0.712]
1,修复处理PE的一个BUG
1. Bug Fixed - Repair process of PE.

chessgod101 01-21-2011 09:57

@ da-brain,
Here is the official download:
_hxxp://sod.ibt.name/Download/StrongOD.dll

deepzero 01-23-2011 04:36

the problem with "goto address in disassembler" (cntrl+g) seems to be an compatibility issue with the "olly advanced" plugin by "markus thdjm".

Fyyre 01-24-2011 07:31

Simple update 'script' I made...

Code:

wget "http://sod.ibt.name/update.txt"
wget "http://sod.ibt.name/Download/StrongOD.dll"
echo y | copy StrongOD.dll .\Plugins\StrongOD.dll
del StrongOD.dll

place contents into filename.cmd place into \ollydbg (or w/e directory name for modified version), run to update. yes, wget.exe must be somewhere in your path, if not have get from unxutils via sourceforge.net

of course if you must edit StrongOD.dll to work with your modified olly, this is another story

-Fyyre

chessgod101 02-10-2011 03:15

StrongOd 0.4.1.716 Released today.
Changes:
1, enhanced Fanfan debug (bypass anti-debug)

Download:

hxxp://sod.ibt.name/download/StrongOD%20v0.4.1.rar

Dll Only:
hxxp://sod.ibt.name/Download/StrongOD.dll

ZeNiX 02-10-2011 09:40

StrongOD.v0.4.1.716 [2011.02.09]
 
1 Attachment(s)
Here you are.

PS. Thanks for the translation.

daqstar 02-11-2011 22:46

UnxUtils
 
3 Attachment(s)
Quote:

Originally Posted by Fyyre (Post 71145)
Simple update 'script' I made...
wget.exe must be somewhere in your path, if not have get from unxutils via sourceforge.net

If you have any trouble finding these native Win32 versions of the Unix Commands then here you are (in UnxUtils\usr\local\wbin):

chessgod101 03-29-2011 09:20

1 Attachment(s)
StrongOD 0.4.2 was released today:
1, increased the functionality of VMP detection (pure entertainment)

(quote me if that is a bad translation) ;)
Download:
Code:

http://sod.ibt.name/download/StrongOD%20v0.4.2.rar
DLL Only:
Code:

http://sod.ibt.name/Download/StrongOD.dll

chessgod101 04-23-2011 12:53

http://forum.exetools.com/images/editor/attach.gif
 
1 Attachment(s)
StrongOD v0.4.3.770 Released:
1. enhanced Fanfan debugging

Full Archive:
Code:

hxxp://sod.ibt.name/download/StrongOD%20v0.4.3.rar

Dll Only:

Code:

hxxp://sod.ibt.name/Download/StrongOD.dll

wx69wx 05-13-2011 21:04

why i use the strongod,it made the fengyue.sys?
who are fengyue? hai feng yue ying ?

ZeNiX 05-16-2011 10:54

fengyue is author of StrongOD.
A good friend of mine.

Warren 06-06-2011 15:50

thanks for great work.

fulone 06-08-2011 10:06

thanks................

ZeNiX 06-28-2011 19:02

Please, no more [Thanks] post.
Let us keep exetools tidy and neat.

You can use the Thanks button instead of giving repeated [thank you] post.

Zipdecode 06-29-2011 04:46

ZeNIX the most new member use thanks to increase its number of post

Zipdecode 06-29-2011 05:11

JEJEJEE I also did

JMI 06-29-2011 08:47

That's why I delete "new Member" "Thank You" posts when I find then. ;)

Regards,

Zipdecode 06-29-2011 09:32

must respect the rules

chessgod101 08-11-2011 05:18

1 Attachment(s)
StrongOD v0.4.5 Released
1, optimized CheckVMP
2, optimized HookApi
3, an increase in ntdll.LdrInitializeThunk stop function (process execution in the first line of the ring3 code)

Downloads:

Full archive:
Code:

http://sod.ibt.name/download/StrongOD%20v0.4.5.rar
DLL only:
Code:

http://sod.ibt.name/Download/StrongOD.dll

SER[G]ANT 08-23-2011 04:47

sorry for my little flood but...
have the plans to release this plugin for ollydbg v2.01d ?

chessgod101 08-23-2011 04:58

Quote:

Originally Posted by SER[G]ANT (Post 74562)
have the plans to release this plugin for ollydbg v2.01d ?

I am going to assume yes, seeing how it is one of the most useful plugins for ollydbg.
However, I believe that most plugin authors are going to wait for the a final non-beta release of ollydbg 2.xx before they commit to writing plugins since the author may make changes to the plugin APIs.


All times are GMT +8. The time now is 17:21.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX