Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 02-25-2009, 23:37
slambert
 
Posts: n/a
Debuggers

Hi Exe-tool members!

I am a newbie, and I was wondiering if you guys have some suggestions to good debuggers, as I am sure that you know a lot more about this than I do!

Regards,
Slambert
Reply With Quote
  #2  
Old 02-26-2009, 06:32
cyberbob's Avatar
cyberbob cyberbob is offline
VIP
 
Join Date: Aug 2004
Posts: 92
Rept. Given: 23
Rept. Rcvd 118 Times in 28 Posts
Thanks Given: 3
Thanks Rcvd at 30 Times in 14 Posts
cyberbob Reputation: 100-199 cyberbob Reputation: 100-199
well, depends what do you want to debug, my preferences are as follows:

software cracking - OllyDbg
malware analysis - IDA pro
debugging my own code WinDbg
Reply With Quote
  #3  
Old 02-26-2009, 10:30
JMI JMI is offline
Leader
 
Join Date: Jan 2002
Posts: 1,627
Rept. Given: 5
Rept. Rcvd 199 Times in 99 Posts
Thanks Given: 0
Thanks Rcvd at 95 Times in 94 Posts
JMI Reputation: 100-199 JMI Reputation: 100-199
You also need to read up on the operation of various debuggers. For example, OllyDbg is a "ring 3" debugger, while some of the older debuggers , such a Softice and WinDbg, are "ring 0". You need to understand the difference and a quick search on google should suggest to you the difference. Softice is/was a great debugger, but has issues with the newer operating systems.

Bear in mind that "technical terms" actually are important to use correctly. For example, IDA Pro is not actually a "debugger." Technically it is a "disassembler" which can map and permit one to explore the flow of the code. It actually has it's own debugger included with some of the versions, but generally it is not yet considered to be as good as some of the other stand alone "debuggers".

Regards,
__________________
JMI
Reply With Quote
  #4  
Old 02-26-2009, 13:04
Av0id Av0id is offline
VIP
 
Join Date: Jan 2006
Posts: 399
Rept. Given: 112
Rept. Rcvd 111 Times in 69 Posts
Thanks Given: 0
Thanks Rcvd at 15 Times in 15 Posts
Av0id Reputation: 100-199 Av0id Reputation: 100-199
some of debugger works only in x86 arch (ollydbg) and only windbg/ida works in x86 and in x64
Reply With Quote
  #5  
Old 02-26-2009, 19:56
davo007
 
Posts: n/a
ollydbg works in x64, but obviously will only debug 32 bit (x86) programs
Reply With Quote
  #6  
Old 02-26-2009, 20:11
Git's Avatar
Git Git is offline
Old Git
 
Join Date: Mar 2002
Location: Torino
Posts: 1,084
Rept. Given: 219
Rept. Rcvd 265 Times in 157 Posts
Thanks Given: 81
Thanks Rcvd at 203 Times in 119 Posts
Git Reputation: 200-299 Git Reputation: 200-299 Git Reputation: 200-299
IDA may be considered inferior to other debuggers, but it is an unfair and outdated opinion IMO.

Git
Reply With Quote
  #7  
Old 02-26-2009, 22:46
cyberbob's Avatar
cyberbob cyberbob is offline
VIP
 
Join Date: Aug 2004
Posts: 92
Rept. Given: 23
Rept. Rcvd 118 Times in 28 Posts
Thanks Given: 3
Thanks Rcvd at 30 Times in 14 Posts
cyberbob Reputation: 100-199 cyberbob Reputation: 100-199
I agree with Git the latest IDA is superb, versatile debugger! has only one drawback: the price
Reply With Quote
  #8  
Old 02-27-2009, 01:56
ripred
 
Posts: n/a
So we give SYSER a fair chance

Hello,

I miss SYSER in the contributions. Why neglected you him. I have
many years of SOFTICE uses and now I use SYSER. SYSER has his problems, but he becomes better and better. If I think of SOFTICE 2.x, there were also many problems. So we give SYSER a fair chance.

Yours faithfully (My English is a disaster, sorry)
Reply With Quote
  #9  
Old 02-27-2009, 10:11
ZeNiX's Avatar
ZeNiX ZeNiX is offline
Administrator
 
Join Date: Feb 2009
Posts: 712
Rept. Given: 172
Rept. Rcvd 767 Times in 256 Posts
Thanks Given: 193
Thanks Rcvd at 694 Times in 220 Posts
ZeNiX Reputation: 700-899 ZeNiX Reputation: 700-899 ZeNiX Reputation: 700-899 ZeNiX Reputation: 700-899 ZeNiX Reputation: 700-899 ZeNiX Reputation: 700-899 ZeNiX Reputation: 700-899
Quote:
Originally Posted by cyberbob View Post
I agree with Git the latest IDA is superb, versatile debugger! has only one drawback: the price

Which version is the [superd] that you mentioned?

I only used the debugger of 4.xx, and it is not so easy to handle as OD.
Therefore, I have never tried the debugger of 5.xx.
Reply With Quote
  #10  
Old 02-27-2009, 16:11
cyberbob's Avatar
cyberbob cyberbob is offline
VIP
 
Join Date: Aug 2004
Posts: 92
Rept. Given: 23
Rept. Rcvd 118 Times in 28 Posts
Thanks Given: 3
Thanks Rcvd at 30 Times in 14 Posts
cyberbob Reputation: 100-199 cyberbob Reputation: 100-199
Quote:
Originally Posted by zenix View Post
Which version is the [superd] that you mentioned?
the latest version!

Last edited by cyberbob; 02-27-2009 at 17:26.
Reply With Quote
  #11  
Old 02-27-2009, 04:59
davo007
 
Posts: n/a
is it ironic that on a forum that is dedicated to cracking software that the drawback is price
Reply With Quote
  #12  
Old 02-27-2009, 07:53
goku goku is offline
 
Join Date: Feb 2009
Posts: 123
Rept. Given: 30
Rept. Rcvd 34 Times in 15 Posts
Thanks Given: 19
Thanks Rcvd at 3 Times in 2 Posts
goku Reputation: 34
debuggers only net app ? reflector
Reply With Quote
  #13  
Old 02-28-2009, 19:14
davo007
 
Posts: n/a
i've been using version 5 recently, i originally found it hard to go from OD to IDA, but after a while you find that the graphs make things sooo much easier and you'll get used it after a while.
Reply With Quote
  #14  
Old 03-01-2009, 00:46
squareD's Avatar
squareD squareD is offline
VIP
 
Join Date: Aug 2005
Location: Banana Republic
Posts: 255
Rept. Given: 31
Rept. Rcvd 33 Times in 25 Posts
Thanks Given: 22
Thanks Rcvd at 86 Times in 56 Posts
squareD Reputation: 33
Quote:
Originally Posted by davo007 View Post
i've been using version 5 recently, i originally found it hard to go from OD to IDA, but after a while you find that the graphs make things sooo much easier and you'll get used it after a while.
Well, in my opinion the graphs make all more complicated...
I mastered the change from SoftICE to OllyDebug, but never got familar with IDA.
It's really hard to understand all those potentialities of this program.
It should be much easier, if they would make their IDA multilingual for learning it in the mother-language.

Regards, squareD
__________________
The three worst enemies of the reversers: sun , fresh air and especially this unbearable roar of birds ...
Reply With Quote
  #15  
Old 03-01-2009, 01:54
ricnar456 ricnar456 is offline
Friend
 
Join Date: May 2002
Posts: 290
Rept. Given: 1
Rept. Rcvd 28 Times in 10 Posts
Thanks Given: 0
Thanks Rcvd at 52 Times in 40 Posts
ricnar456 Reputation: 28
IDA is the best disassembler and is a growing debugger, is better each version, but I debug with olly and remote windbg or softice in ring0, and look the disassemble in IDA for analysis.

ricnar

Last edited by ricnar456; 03-01-2009 at 05:12.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[Python][Ida Pro]Free the debuggers Storm Shadow Source Code 5 08-25-2014 13:52
question about debuggers Juca General Discussion 1 02-12-2003 22:49


All times are GMT +8. The time now is 08:36.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX