Jump to content
Tuts 4 You

1 Screenshot

About This File

Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap analysis tool built specifically for heap creation, and a large and well supported Python API for easy extensibility.

Overview

  • A debugger with functionality designed specifically for the security industry
  • Cuts exploit development time by 50%
  • Simple, understandable interfaces
  • Robust and powerful scripting language for automating intelligent debugging
  • Lightweight and fast debugging to prevent corruption during complex analysis
  • Connectivity to fuzzers and exploit development tools

The Best of Both Worlds

Immunity Debugger's interfaces include the GUI and a command line. The command line is always available at the bottom of the GUI. It allows the user to type shortcuts as if they were in a typical text-based debugger, such as WinDBG or GDB. Immunity has implemented aliases to ensure that your WinDBG users do not have to be retrained and will get the full productivity boost that comes from the best debugger interface on the market.

Commands can be extended in Python as well, or run from the menu-bar.

immdbg-menubar.png.0c2ea5e60f523b9aafcccb12109b5ddc.png

Python commands can also be run directly from our Command Bar. Users can go back to previously entered commands, or just click in the dropdown menu and see all the recently used commands.

immdbg-dropdown.png.3605ca9c64033bf85265c67cb51f7961.png

Remote command bar

From the command line menu, you can choose to start a threaded command line server, so you can debug remotely from another computer:

immdbg-startrl.png.bb69b518cf3a61c3fbb1758cd72aa68c.png

Python Scripting

Python scripts can be loaded and modified during runtime. The included Python interpreter will load any changes to your custom scripts on the fly. Sample scripts are included, as is full documentation on how to create your own.

immdbg-pyscript.png.41d4128e15e3210d707f04ddb86a8faa.png

immdbg-runpy.png.b921b3a948e1f9fc9a566485062e64c5.png

Immunity Debugger's Python API includes many useful utilities and functions. Your scripts can be as integrated into the debugger as the native code. This means your code can create custom tables, graphs, and interfaces of all sorts that remain within the Immunity Debugger user experience. For example, when the Immunity SafeSEH script runs, it outputs the results into a table within the Immunity Debugger window.

immdbg-apidoc.png.6eee0480961950b84b14aae2af188970.png

immdbg-safeseh.png.e75e24e3b2820e30cfdb30929f9eefdb.png

Other scripts can ask for user input with dialogs and combo boxes:

immdbg-inputbox.png.213354da1ae3ca232294f60d3685f326.png

immdbg-combobox.png.9a53359d3cb5564b5da848b6d0cfc477.png

Having a fully integrated Python scripting engine means you can easily paint variable sizes and track variable usage, which in turn comes in handy when trying to automatically find bugs!

immdbg-stackvars.png.ec2a1b7d4e7821c53acbac760ecffb7c.png

User Feedback

Recommended Comments

There are no comments to display.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...