using ollydbg
Results 1 to 3 of 3

Thread: using ollydbg

  1. #1
    Junior Member
    Join Date
    Dec 2006

    using ollydbg

    when i was open the the program "xxx.exe" in ollydbg its show me the ntdll module so i right click and choosed :view->xxx module but than when i press F8 its back to the ntdll module so i cant trace the program sourcecode, how can i make this module view permanent ? (and because this i dont see that the registers value changed..)
    thanks !

  2. #2
    Senior Member
    Join Date
    Oct 2003
    I dont think you can make it permanent. When you hit f8 it is going to the next instruction and in this case it is ntdll. It is just following the process.

  3. #3
    Junior Member AarzaK's Avatar
    Join Date
    Jul 2006

    In this website, Pablo A Castillo has a ollydbg version modificated by "the shadow", this has more plugins and better interface.


    this is the same ollydbg but enhanced!!

    See the link in the last post.

    I Was Sent...

    Alyssa: Aarzak! Save the world!
    Aarzak: I am the only one who can save this world!
    The Last Battle - Sega(c) Games 1989

Similar Threads

  1. Forensic Analysis of Malcode - Step by Step
    By thehorse13 in forum The Security Tutorials Forum
    Replies: 31
    Last Post: March 24th, 2006, 12:22 PM
  2. Reverse Engineering (Tutorial)
    By sec_ware in forum The Security Tutorials Forum
    Replies: 8
    Last Post: October 14th, 2004, 10:06 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts