Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 02-12-2005, 18:53
00_ZiP_RaR_00
 
Posts: n/a
Question Breakpoints in Softice are not working Help

Hi to all,

I am a new user to cracking. I recently downloaded Driver Studio 3.1, The problem is that my softice is not responding to the Breakpoints I have placed. Even the very basic beakpoint on MessageBoxA or MessageBoxW is not working. I have downloaded the latest OSINFO.DAT from compuware site, but still the issue is not resolved.

OS: Windows XP Pro with SP2.
RAM: 256 MB
Processor: Intel Pentium M 1.5
Technology: Centrino

Please help as this issue is annoying me and I am unable to learn the very best in programming/debugging.

00_Z!p_Rar_00
Reply With Quote
  #2  
Old 02-12-2005, 22:18
JMI JMI is offline
Leader
 
Join Date: Jan 2002
Posts: 1,627
Rept. Given: 5
Rept. Rcvd 199 Times in 99 Posts
Thanks Given: 0
Thanks Rcvd at 96 Times in 94 Posts
JMI Reputation: 100-199 JMI Reputation: 100-199
And "of course" you RTFM about context sensitive breakpoints and actually searched for information about v3.1 and breakpoints, right?

Regards,
__________________
JMI
Reply With Quote
  #3  
Old 02-13-2005, 01:44
dyn!o's Avatar
dyn!o dyn!o is offline
Friend
 
Join Date: Nov 2003
Location: Own mind
Posts: 214
Rept. Given: 1
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 8
Thanks Rcvd at 0 Times in 0 Posts
dyn!o Reputation: 1
I suppose the guy (?) is asking rather about user mode (ring 3) breakpoints.

Driver Studio 3.1 was indeed the first relase which may confuse its users if they don't read help file. In DS 3.1 there exist a variable which defines BP response in ring 3 mode. Starting from this relase breakpoints are context sensitive, which means they are active only in the context in which they were activated.

More information at: http://www.exetools.com/forum/showthread.php?t=3732&

(notice "set BreakInSharedMods on " command - that is exactly what you are searching for)

Regards.
Reply With Quote
  #4  
Old 02-13-2005, 05:05
freddy2002
 
Posts: n/a
Or it should be also possible to BPM 'ADRESS' X
(I belive)

EDIT:
long time not used debugger but
addr ' ??? '
bpm ' ??? ' X

Last edited by freddy2002; 02-13-2005 at 17:33.
Reply With Quote
  #5  
Old 02-13-2005, 05:20
dyn!o's Avatar
dyn!o dyn!o is offline
Friend
 
Join Date: Nov 2003
Location: Own mind
Posts: 214
Rept. Given: 1
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 8
Thanks Rcvd at 0 Times in 0 Posts
dyn!o Reputation: 1
Nope. BPM, despite the fact of DRx usage, still works in a specific context only (DS >3.0).

Regards.
Reply With Quote
  #6  
Old 02-13-2005, 13:06
just4urim
 
Posts: n/a
Cool

First check your SoftICE status ,is it enable ? Then enable the breakpoints in SoftICE . Use be to enable the breakpoints and bl to view the list of the current breakpoints . you can find more in SoftICE Command Refrence ....
Reply With Quote
  #7  
Old 02-13-2005, 18:08
dyn!o's Avatar
dyn!o dyn!o is offline
Friend
 
Join Date: Nov 2003
Location: Own mind
Posts: 214
Rept. Given: 1
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 8
Thanks Rcvd at 0 Times in 0 Posts
dyn!o Reputation: 1
Freddy2002: it still will not work because you cannot issue ADDR command with a direct address as the parameter (context). When you type the parameter of ADDR command it is the address of process specific KPEB (Kernel Process Environment Block), not any direct addressing. Context can be set only with KPEB, process name or PID.

So, you can set the breakpoints on the following ways:

ADDR Armadillo (process name)
BPX/BP 4a4740 (x)

ADDR 8202aa00 (KPEB)
BPX/BP 4a4740 (x)

ADDR 160 (PID)
BPX/BP 4a4740 (x)

It will work in DS 3.1 without issuing any additional commands and environment variables.

Regards.
Reply With Quote
  #8  
Old 02-14-2005, 02:03
00_ZiP_RaR_00
 
Posts: n/a
Thank You for all the help.

I solved the problem by downloading the DS 3.2. I extracted the file ntice.sys from the Data1.cab in the setup folder of the archive DS 3.2 (just to avoid the whole installation) and replaced the one in Windows\System32\Drivers folder. I also replaced the osinfo.dat and osinfob.dat files. Now softice is working fine. I think the issue was with the softice version in DS 3.1 itself on XP SP2.

Special thanks to dyn!o. I will surely give a try to the resolution you provided and will also read the softice manual.

This is surely the best forum on EXEcutables.

00_Z!P_RaR_00
Reply With Quote
  #9  
Old 02-14-2005, 20:24
Sky Sky is offline
Friend
 
Join Date: Aug 2004
Posts: 69
Rept. Given: 3
Rept. Rcvd 3 Times in 2 Posts
Thanks Given: 6
Thanks Rcvd at 15 Times in 11 Posts
Sky Reputation: 3
Question

Quote:
Originally Posted by 00_ZiP_RaR_00
I solved the problem by downloading the DS 3.2.
00_Z!P_RaR_00
You may share the link?
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Some useful Breakpoints in lsdecode 8.2.2.3 Calvin General Discussion 2 05-03-2010 16:05
Softice not working ... what versions are you using??? yaa General Discussion 5 12-14-2003 05:46
NuMega.SoftICE.v4.05.for.WinNT - Not Working In Windows 2000 SP3 or 4 PiG_DoG General Discussion 4 07-26-2003 09:28
Why SoftIce is not setting breakpoints? Pyrat General Discussion 8 01-14-2003 00:34


All times are GMT +8. The time now is 23:52.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )