Jump to content
Tuts 4 You

Feature suggestions


mrexodia

Recommended Posts

Dragon Palace

hello, is that possible searching Chinese strings? if you can find some source code in bbs.pediy.com

 

when you see below OllyDBG picture, you will see 4 windows with red words explained. but what other windows called in OD and x64DBG?

 

1. Disassembly window
2. Registers window
3. Dump window
4. Stack window
5. How to call this window?

 

when will make it work?

 

Olly1.png

Edited by chixiaojie
Link to comment

suggust:

double click EIP will go to current EIP in CPU window, just like OD. 

 

Greetings,rxz

Edited by rxzcums
Link to comment

@chixiaojie: Searching for UNICODE strings is possible, but currently unsupported, because x64dbg is 100% ASCII based. Rewriting for UNICODE is possible and I will work on this, but first I want to solve various other things.

And for the rest of your suggestion, what's the deal with all these windows? I attached screenshots of all views available in x64dbg in the current dev build.

Greetings,

Mr. eXoDia

x64_dbg_pictures.rar

Link to comment

Not sure if these have been requested:


 


1. Ability to sort the symbols (exports) by name


2. Ability to search for binary strings


3. Ability to set a memory breakpoint in the memory map window


4. Quicker method to add exceptions to a new session


5. A call stack window similar to Olly's K tab


6. Information appearing in what is called the "data" window just below the disassembly window


7. Ability to navigate forwards and backwards in the disassembly window using the '+' '-' keys


similar to Olly.


8. Binary edit in disassembly window (context window)


9. Search for all intermodular calls in disassembly window (context menu)


 


Also, nice job on the gui and debugger.


 


BR,


 


CZ


  • Like 2
Link to comment

@CondZero: some are already implemented (like the +/-), others will go directly to the todo list.

Greetings

Link to comment
  • 2 weeks later...

@kassane: 100% ODBGScript/OllyScript support will never be implemented, we might do a converter in the future though. There is a script language implemented, it also directly supports stuff like this:

mov page,[esp+4]+10002:[kernel32:GetProcAddress+21]=0x9090bp LoadLibraryA
A converter tool would require all variables used in the ODBGScript to be prefixed with 'Script_' or something else, because x64_dbg would error on the following script:
gpa "GetProcAddress","kernel32.dll"mov GetProcAddress,$RESULT <- invalid dest "GetProcAddress"
GetProcAddress is already an export, so you cannot move anything to it.

Prefixing the variable could make most stuff working.

Read the following page for more information about the allowed input types in x64_dbg: http://x64dbg.com/help/scr/Input.htm The following page is about what kind of calculations can be done and used directly as input: http://x64dbg.com/help/scr/Calculations.htm

All the possible (script) commands can be found at http://x64dbg.com/help/scr/Commands.htm

If you know any command that you would like to see implemented from ODBGScript, please create an issue at http://issues.x64dbg.com or post a new thread here.

Greetings,

Mr. eXoDia

Edited by Mr. eXoDia
  • Like 1
Link to comment

Not sure if these have been requested:

 

1. Ability to sort the symbols (exports) by name

2. Ability to search for binary strings

3. Ability to set a memory breakpoint in the memory map window

4. Quicker method to add exceptions to a new session

5. A call stack window similar to Olly's K tab

6. Information appearing in what is called the "data" window just below the disassembly window

7. Ability to navigate forwards and backwards in the disassembly window using the '+' '-' keys

similar to Olly.

8. Binary edit in disassembly window (context window)

9. Search for all intermodular calls in disassembly window (context menu)

 

Also, nice job on the gui and debugger.

 

BR,

 

CZ

1. Implemented in the current dev version.

2. ctrl+b (you cannot yet search the whole process)

3. yep, can be done already

4. could you elaborate on that? there is an 'Add Last Exception' button in the exception settings dialog

5. yep, we're working on it

6. also working on that :)

7. yep, it's implemented

8. yep, also implemented

9. yep, implemented as well

Thanks for your suggestions.

Greetings,

Mr. eXoDia

EDIT: oops, didn't see I already replied here, could this be merged with my previous post please?

Edited by Mr. eXoDia
Link to comment

Is there an option for repeatable comment for the same instructions? What I want to do is to be able to comment one line and that x64dbg repeats it for all instances of the same command.
Example:

401000 call 12345678     ; call to some function...401070 call 12345678     ; call to some functionor401000 push 12345678     ; push some string...401050 push 12345678     ; push some string

Also do you plan to keep compiled versions of plugins or are we supposed to install VC compiler to get working plugins? I was looking for plugin to import map files but found only link to src on x64dbg site.

Link to comment

@ToMKoL:

No, there is no option to do this.

Plugins are separate from x64dbg, so I cannot provide support for them. If you need a plugin, ask the author, which is not me in most cases.

Greetings

Link to comment

x64dbg assembling - CHECK! thanks alot! Mr. eXoDia


 


i feel honored, thanks for mention me in the Special Thanks!


Edited by Artic
Link to comment

Hi, I want to know, is it possible to add feature that allows to debug program which  works as a service?


Edited by Siarogak
Link to comment

@Siarogak: You should be able to attach to the service process (although attaching is broken in the current release, it should be fixed by the next release).

Link to comment

I know, but some checks can be performed when the program starts, and there is no sense in debugging when the programm runs. 


Edited by Siarogak
Link to comment

@Siarogak: And when you open the application in the debugger it doesn't start the service? You could change the EP bytes to EBFE and attach the debugger after it started. In that way you can also debug the initialization routine.

Link to comment
  • 2 weeks later...

is it possible to make hints and the autocompletion in the command line for API's, like you did it for commands?


Edited by Siarogak
Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...