I just heared about a new ollydbg-based debugger called Immunity Debugger.
Assumably Ollydbg sold the ollydbg v1.10 engine to Immunity.
I'd say give it a shot and delete it's not at least 10 times better

Immunity Debugger

wow somebody is behind on the news

yes ollydbg v1 engine was bought by the company that made the immunity debugger.

they have made some improvements to it though, some nice graphing,
and a nice scripting language python ..

there is even a plugin contest going.

the debugger is said to especially geared towards reverse engineers/vulnerability searchers
and afaik it's pretty well adobted already, with those people, quite some buzz around it

not too different from olly though, waiting for ollydbgv2 too

He!

I was just being polite by saying "I just heared"...
News like this should've been on TBS way earlier than this!

Of course I knew this was going to happen for years!

Sorry sorry I should have never doubted you...


forgive me.

I wish it ran on *nix though. I'm so bored with the PE format and the windows way of doing the IAT and SEH
gimme signals

being able to write stuff in python is quite powerful though.

The colors look a bit daft to me... makes me think of those VB scriptkiddie GUIs that try to imitate some 80's tandy terminal because they saw somebody type l33t commands in some pwnage vidz0r they heard about from one of their AOL messenger buddies.

rawr, I'm so gonna pwn my AOL buddies!
odbg110.zip: 1.116.546 bytes, ImmunityDebugger_setup.exe: 12.925.845 bytes. Nice job keeping it light.
muhaha, all my AOL buddies will phj33r me!!!

http://seclists.org/fulldisclosure/2007/Aug/0151.html
ah, that must be one of his AOL buddies
(btw: the above report is fake, read the rest)

Python scripting is nice, but I think if you want to use scripts with olly on a regular basis, you'd be better off getting your favourite scripting engine, and add some bindings using an olly plugin. I'd much rather use something like pike or Ch or ruby or whatever...

Oh well, I'll give it a try... at least the graphs look pretty. IDA graphs look prettier though
You don't have to register to download it btw, just click the button...

I wonder if Olly 2 can help me crack those unsolved challs

Nah, it doesn't solve incompetence yet.

It's on the roadmap for olly 3 though/

btw did anybody already spend time to patch out that rediculous in debugger advertising?

the function at 004D9CA4
appears to be some string manipularion/allocation whatever, breaking there you can easily get into the other parts of that code.

The program _does_ "phone home" everytime you start it up, to check for updates. You might just want to set
auth.immunitysec.com 127.0.0.1 in your hosts file. At a very quick glance it just accesses an checkupdate script,
but it does send your full user agent, from i'm guessing default browser. So they can collect some stats on
os distribution and such.

I just got a bad vibe when tracing through the code. I'm not sure if the simple control flow graph and the python
plugins will make up for that.

rhican, if you agreed with the license during installation, you should consider this:

What if he reverse engineered the license agreement in the install file? Or if he reverse engineered the install file, so that the eventually extracted program will be modified.

The license agreement only applies to those who accept it. Untill you've accepted it, you can modify anything you want I presume..