Exetools  

Go Back   Exetools > General > Developer Section

Notices

View Poll Results: Would you use this debugger?
Yes (mainly x32) 73 29.67%
Not at all 22 8.94%
Yes, if it gets better (please post feature suggestions) 79 32.11%
Yes (mainly x64) 72 29.27%
Voters: 246. You may not vote on this poll

Reply
 
Thread Tools Display Modes
  #301  
Old 06-16-2018, 14:43
deroko's Avatar
deroko deroko is offline
cr4zyserb
 
Join Date: Nov 2005
Posts: 217
Rept. Given: 13
Rept. Rcvd 30 Times in 14 Posts
Thanks Given: 7
Thanks Rcvd at 30 Times in 15 Posts
deroko Reputation: 30
One thing I always wanted to ask for When I have __debugbreak() enabled and attach as JIT, x64dbg breaks always on this int 3, and even if you set new origin after int 3 it somehow restores exception back to int 3 and usually solution is to replace int 3 with nop. Olly and windbg tend to break after int 3 thus exception doesn't reacquier.

This would be great imho
__________________
http://accessroot.com
Reply With Quote
The Following 4 Users Say Thank You to deroko For This Useful Post:
Indigo (07-19-2019), MarcElBichon (06-16-2018), tonyweb (06-18-2018), yoza (06-20-2018)
  #302  
Old 06-17-2018, 07:08
mr.exodia's Avatar
mr.exodia mr.exodia is offline
Super Moderator
 
Join Date: Nov 2011
Posts: 859
Rept. Given: 497
Rept. Rcvd 1,155 Times in 309 Posts
Thanks Given: 92
Thanks Rcvd at 746 Times in 355 Posts
mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299 mr.exodia Reputation: 1100-1299
deroko: You can use the option 'Skip INT3 stepping' (https://i.imgur.com/JzPDRws.png), or manually use the `skip` command to achieve what you want.

Respect for your work.
__________________
x64dbg: http://x64dbg.com
My Blog: http://mrexodia.cf
Reply With Quote
The Following 3 Users Say Thank You to mr.exodia For This Useful Post:
Indigo (07-19-2019), tonyweb (06-18-2018), yoza (06-20-2018)
  #303  
Old 06-18-2018, 19:19
deroko's Avatar
deroko deroko is offline
cr4zyserb
 
Join Date: Nov 2005
Posts: 217
Rept. Given: 13
Rept. Rcvd 30 Times in 14 Posts
Thanks Given: 7
Thanks Rcvd at 30 Times in 15 Posts
deroko Reputation: 30
Ah sweet, had no idea this options is doing this. Tnx
__________________
http://accessroot.com
Reply With Quote
The Following 2 Users Say Thank You to deroko For This Useful Post:
Indigo (07-19-2019), tonyweb (06-18-2018)
  #304  
Old 06-18-2018, 21:48
winndy winndy is offline
VIP
 
Join Date: Sep 2005
Posts: 227
Rept. Given: 103
Rept. Rcvd 25 Times in 11 Posts
Thanks Given: 18
Thanks Rcvd at 11 Times in 10 Posts
winndy Reputation: 25
Cool!
Wish x64dbg could be cross-platform.
Reply With Quote
The Following User Says Thank You to winndy For This Useful Post:
Indigo (07-19-2019)
  #305  
Old 07-14-2018, 14:54
DavidXanatos DavidXanatos is offline
Friend
 
Join Date: Jun 2018
Posts: 65
Rept. Given: 0
Rept. Rcvd 13 Times in 8 Posts
Thanks Given: 21
Thanks Rcvd at 131 Times in 43 Posts
DavidXanatos Reputation: 13
I was trying to use this debugger the other day and run over a strange issue.

I was not able to make it ignore an exception thrown by the application (ExceptionCode: C0000005), as far as I can tell its part of a anti reverse engineering technique. in IDA the same exception gets thrown but there when I encounter the first one i can tell it to ignore all subsequent once.

I tried to uncheck all the "break on" checkboxes in the options as well as adding last exception and/or add 00000000-ffffffff to the excluded exceptions list but still it did not ignore the exception. I wonder if there is a bug (I was using the latest build as of yesterday) or if I missed some option.

If its the later than I would appreciate being pointed towards it and if its the former than a fix would be much appreciated to
Reply With Quote
The Following 2 Users Say Thank You to DavidXanatos For This Useful Post:
Indigo (07-19-2019), niculaita (09-26-2018)
  #306  
Old 07-27-2018, 07:36
Dicypher Dicypher is offline
Friend
 
Join Date: Nov 2017
Posts: 3
Rept. Given: 0
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 0
Thanks Rcvd at 4 Times in 2 Posts
Dicypher Reputation: 1
@sendersu Just followed the UPX tutorial, works like a charm.

I'll be working with some more advanced packers soon, after nailing down UPX. Mr. Exodia has done some awesome work with x64dbg... no doubt.
Reply With Quote
The Following 2 Users Say Thank You to Dicypher For This Useful Post:
Indigo (07-19-2019), sendersu (07-30-2018)
  #307  
Old 08-07-2018, 08:18
T-rad T-rad is offline
Friend
 
Join Date: May 2016
Posts: 13
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 4
Thanks Rcvd at 14 Times in 9 Posts
T-rad Reputation: 0
anyone know why DataCopy was removed. last version with it is snapshot_2018-04-05_00-33
Reply With Quote
The Following User Says Thank You to T-rad For This Useful Post:
Indigo (07-19-2019)
  #308  
Old 08-07-2018, 08:39
atom0s's Avatar
atom0s atom0s is offline
Family
 
Join Date: Jan 2015
Location: 127.0.0.1
Posts: 251
Rept. Given: 24
Rept. Rcvd 101 Times in 47 Posts
Thanks Given: 42
Thanks Rcvd at 421 Times in 166 Posts
atom0s Reputation: 100-199 atom0s Reputation: 100-199
Quote:
Originally Posted by T-rad View Post
anyone know why DataCopy was removed. last version with it is snapshot_2018-04-05_00-33
A quick skim over the merge requests and commit log show it was merged and combined a single editor. (Hex editor / string editor / data copy dialog into one. https://github.com/x64dbg/x64dbg/pull/1941)
__________________
Personal Projects Site: https://atom0s.com

Last edited by atom0s; 09-13-2018 at 09:38.
Reply With Quote
The Following 4 Users Say Thank You to atom0s For This Useful Post:
chants (09-03-2018), Indigo (07-19-2019), pps44 (01-13-2019), tonyweb (08-11-2018)
  #309  
Old 10-14-2019, 21:17
WildGoblin WildGoblin is offline
Friend
 
Join Date: Jan 2006
Posts: 44
Rept. Given: 105
Rept. Rcvd 31 Times in 14 Posts
Thanks Given: 9
Thanks Rcvd at 18 Times in 13 Posts
WildGoblin Reputation: 32
Great tool, many thanks for it!
Reply With Quote
Reply

Tags
bit, debugger, x32, x64, x64_dbg

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
AdvancedScript x64dbg Plugin ahmadmansoor Developer Section 14 10-15-2019 00:35
DBG2AP - x64dbg plugin Agmcz Community Tools 1 06-15-2019 07:14
nfd - x64dbg plugin hors Community Tools 2 04-01-2018 08:18
CopyToAsm - x64dbg plugin mrfearless Community Tools 0 03-04-2018 08:36
x64dbg python Storm Shadow Developer Section 6 08-04-2017 15:29


All times are GMT +8. The time now is 20:45.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX