Ollydbg Reference Card

Uploaded by

0712gp53

100% found this document useful (1 vote)

335 views1 page

OllyDbg is a 32bit assembler level analysing debugger. It is a shareware, but you can download and use it for free.

Original Description:

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

OllyDbg is a 32bit assembler level analysing debugger. It is a shareware, but you can download and use it for free.

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

100% found this document useful (1 vote)

335 views1 page

Ollydbg Reference Card

Uploaded by

0712gp53

OllyDbg is a 32bit assembler level analysing debugger. It is a shareware, but you can download and use it for free.

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 1

Search inside document

OllyDbgReferenceCard

OllyDbgisa32bitassemblerlevelanalysingdebugger Disasemblershortcuts: F2 Togglebreakpoint forMicrosoftWindows.Emphasisonbinarycode Shift+F2 Setconditionalbreakpoint analysismakesitparticularlyusefulincaseswhere F4 Runtoselection sourceisunavailable.OllyDbgisashareware,butyou Alt+F7 Gotopreviousreference candownloadanduseitforfree. Alt+F8 Gotonextreference Globalshortcuts:
Ctrl+F2 Alt+F2 F3 F5 Alt+F5 F7 Ctrl+F7 F8 Ctrl+F8 F9 Shift+F9 Ctrl+F9 Alt+F9 Ctrl+F11 F12 Ctrl+F12 Alt+B Alt+C Alt+E Alt+L Alt+M Alt+O Ctrl+T Alt+X Restartprogram Closeprogram Opennewprogram Maximize/restoreactivewindow MakeOllyDbgtopmost Stepinto(enteringfunctions) Animateinto(enteringfunctions) Stepover(executingfunctioncallsatonce) Animateover(executingfunctioncallsatonce) Run Passexceptiontostandardhandlerandrun Executetillreturn Executetillusercode Traceinto Pause Traceover OpenBreakpointswindow OpenCPUwindow OpenModuleswindow OpenLogwindow OpenMemorywindow OpenOptionsdialog SetconditiontopauseRuntrace CloseOllyDbg Ctrl+A Ctrl+B Ctrl+C Ctrl+E Ctrl+F Ctrl+G Ctrl+J Ctrl+K Ctrl+L Ctrl+N Ctrl+O Ctrl+R Ctrl+S Asterisk(*) Enter Plus(+) Minus() Space() Colon(:) Semicolon(;) Analysecode Startbinarysearch Copyselectiontoclipboard Editselectioninbinaryformat Searchforacommand Followexpression Showlistofjumpstoselectedline Viewcalltree Repeatlastsearch Openlistoflabels(names) Scanobjectfiles Findreferencestoselectedcommand Searchforasequenceofcommands Origin Followjumporcall Gotonextlocation/nextruntraceitem Gotopreviouslocation/previousruntraceitem Assemble Addlabel Addcomment

http://www.ollydbg.de

FunctionCallingConventions: cdecl: argumentsonstackrighttoleft(reverseorder) retinEAX callercleansupthestack stdcall calleecleansupthestack usedinWIN32API fastcall parametersinregisters extraparametersonstack callercleansupthestack thiscall usedinC++ similtocdecl ECXholdsthispointer thispointerpushedontostacklast(GNU)

IndirectAddressingMemory(AddrCalculated:akaEffectiveAddr)

evalinstrw/omodifyvaluesinoperands cmpisimpliedsub testisimpliedand

Commonx86registers
EIP=pointtoinstructiontoexecute;updatedalsowhenbranching ESP=pointtolastitemonstack;changeswitheachpush/pop ECX=counterforlooping; EBP=basepointerforreferencingfunctionargumentsandlocal variables;EBPvalue=localvar,EBP+value=parameter;EBPis theframepointer; EAX=addition,multiplication,functionresults; ESI/EDI=formemorytransfer; EFLAGS=bitsthatrepresentstheoutcomeofcomputation, controlsCPUoperation generalpurposeregisters: EAX,EBX,ECX,EDX,EBP,ESP,ESI,EDI SS,GS,FS,ES,DS,CS=memorysegmentregisters; CSdefaultwhenfetchinginstr DSforaccessingdatawithESI/EDI SSforaccessingdatawithESP

Looping(LOOPccinstr): examinesECXreg Z=0,E=eq.,N=not loopnz=loopifECXisnot0 loop=loopifECXisnot0(shortjumps<128bytes) autodecrementECX XCHGexchange2regs(swapthevalue) Shiftxbit: SHRalsodivby2^xbit SHLalsomulby2^xbit LEA(LoadEffectiveAddress) usedtocalculateanaddress(notverified) resultstoredinregister morethan1calculusin1instr.

OllyDbgtutorialsavailableat:

RunTracehttp://www.ollydbg.de/Tut_rtr.htm LoadDLL http://www.ollydbg.de/Loaddll.htm

2008AntonioMerolalicensedunderthetermsoftheGFDLGNUFreeDocumentationLicensev1.2orlater.

Linux Mobile Forensic Labs
Document8 pages
Linux Mobile Forensic Labs
Ridho Koteka
No ratings yet
LAB 02 - Installation of FTP Server
Document3 pages
LAB 02 - Installation of FTP Server
Madhukar Wakade
No ratings yet
Netx Insiders Guide
Document261 pages
Netx Insiders Guide
Mapuka Mueller
No ratings yet
The Little Book of C
Document92 pages
The Little Book of C
alex7489
100% (1)
Arp Poisoning Attack Mitigation
Document87 pages
Arp Poisoning Attack Mitigation
Ia Council
No ratings yet
Homework 3
Document4 pages
Homework 3
Jenny Matute
No ratings yet
VMProtect v3.x.x OEP Finder
Document1 page
VMProtect v3.x.x OEP Finder
mankavar
No ratings yet
Disk encryption A Complete Guide - 2019 Edition
From Everand
Disk encryption A Complete Guide - 2019 Edition
Gerardus Blokdyk
No ratings yet
Harmony of The Gospels. Analytical Outline (Robertson, A T)
Document10 pages
Harmony of The Gospels. Analytical Outline (Robertson, A T)
0712gp53
No ratings yet
EMOC 208 Installation of VITT For N2 Cylinder Filling
Document12 pages
EMOC 208 Installation of VITT For N2 Cylinder Filling
tejcd1234
No ratings yet
Getting Started
Document10 pages
Getting Started
Bryan Tevillo
100% (1)
Nodemcu Esp32: Microcontroller Development Board
Document6 pages
Nodemcu Esp32: Microcontroller Development Board
Fernando Piedade
100% (1)
A Beginners Guide To Cracking
Document68 pages
A Beginners Guide To Cracking
Mohd Ainol Ridzuan Sahran
100% (1)
ADC Through SPI
Document4 pages
ADC Through SPI
Chiquita White
100% (1)
Avr Tutorial
Document53 pages
Avr Tutorial
Rakesh Kumar
100% (1)
Using OpenOCD JTAG in Android Kernel Debugging
Document42 pages
Using OpenOCD JTAG in Android Kernel Debugging
Syafiq Z Zul
No ratings yet
Css Week 5
Document5 pages
Css Week 5
Answer Man
44% (18)
Olly Script
Document5 pages
Olly Script
j_humbs
No ratings yet
User Manual DFS 2015 ENG PDF
Document56 pages
User Manual DFS 2015 ENG PDF
theodore_praset5954
No ratings yet
How To Use Dev-C++
Document7 pages
How To Use Dev-C++
Qaiser
No ratings yet
Lab Task Snort
Document4 pages
Lab Task Snort
Qudsiya Malik
No ratings yet
Risk Management: "Once We Know Our Weaknesses, They Cease To Do Us Any Harm"
Document61 pages
Risk Management: "Once We Know Our Weaknesses, They Cease To Do Us Any Harm"
Paolo Legaspi
No ratings yet
IDA Pro Shortcuts
Document1 page
IDA Pro Shortcuts
sagibs2yahoo
100% (2)
(GOOD) SPI Communications
Document17 pages
(GOOD) SPI Communications
Duy Quang Nguyễn
100% (1)
Hands On Contiki OS and Cooja Simulator: Exercises (Part II)
Document15 pages
Hands On Contiki OS and Cooja Simulator: Exercises (Part II)
Vassilios Kotsiou
No ratings yet
Ollydbg Command Line Cheat Sheet: Expressions (Expr) Labels and Comments
Document1 page
Ollydbg Command Line Cheat Sheet: Expressions (Expr) Labels and Comments
Eng AbdelRhman
100% (1)
77 Linux Commands and Utilities You'Ll Actually Use
Document16 pages
77 Linux Commands and Utilities You'Ll Actually Use
arun0076@gmail.com
No ratings yet
Dos N Ddos
Document5 pages
Dos N Ddos
singh_manpreet8080
No ratings yet
Smart Cards
Document19 pages
Smart Cards
Rakesh Belakud
No ratings yet
3 NetworkSecurity LABManual
Document33 pages
3 NetworkSecurity LABManual
dahiyalk
No ratings yet
Helpfull Commands For Fatrat
Document3 pages
Helpfull Commands For Fatrat
sekhar728626
No ratings yet
MICRO - Programming Instructions PDF
Document4 pages
MICRO - Programming Instructions PDF
Manu Krishnan Magvitron
No ratings yet
Bypassing ASLR in Windows 10
Document13 pages
Bypassing ASLR in Windows 10
Püû Ķø Ķő
No ratings yet
Immunity Debugger
Document10 pages
Immunity Debugger
Julio Kafir
No ratings yet
Raspberry Pi Remote Access
Document1 page
Raspberry Pi Remote Access
Steve Attwood
No ratings yet
DEFCON 21 Grand JTAGulator PDF
Document62 pages
DEFCON 21 Grand JTAGulator PDF
hisohiso
No ratings yet
Themida - Winlicense Ultra Unpacker 1.4
Document270 pages
Themida - Winlicense Ultra Unpacker 1.4
VirlanRobertt
No ratings yet
CNS 320 Week7 Lecture
Document62 pages
CNS 320 Week7 Lecture
alb3rtlin
100% (1)
Hijack THis
Document3 pages
Hijack THis
Ariff Muhaimin Ahmad
No ratings yet
Steps Wifi Slax
Document4 pages
Steps Wifi Slax
sabun858
No ratings yet
Linux Introduction
Document18 pages
Linux Introduction
Alexis Camano
No ratings yet
Automate SQL Injection With Sqlmap
Document18 pages
Automate SQL Injection With Sqlmap
pham dat
No ratings yet
Lecture 10 - Mathematics
Document38 pages
Lecture 10 - Mathematics
ghassan-60000
No ratings yet
Cain & Abel V 2.5: Password Cracking Via ARP Cache Poisoning Attacks v.1
Document15 pages
Cain & Abel V 2.5: Password Cracking Via ARP Cache Poisoning Attacks v.1
Jesus
100% (1)
Alex Van Ginkel Final Thesis MSC - 27nov
Document48 pages
Alex Van Ginkel Final Thesis MSC - 27nov
Brett Shavers
100% (1)
Debugger stm8 PDF
Document23 pages
Debugger stm8 PDF
betodias30
No ratings yet
Metasploit Framework
Document8 pages
Metasploit Framework
Itz Tuhin
No ratings yet
Signals and Daemon Processes Unix
Document30 pages
Signals and Daemon Processes Unix
Rahul Sinha
No ratings yet
Dsniff and Arpspoof On Mac
Document4 pages
Dsniff and Arpspoof On Mac
Walid Laasmi
No ratings yet
Fragmentation Attack On A Wireless Networkdoc968
Document34 pages
Fragmentation Attack On A Wireless Networkdoc968
maheswara448
No ratings yet
An In-Depth Look Into The Win32 PE File Format - Matt Pietrek 2002
Document30 pages
An In-Depth Look Into The Win32 PE File Format - Matt Pietrek 2002
Alex Beldner
100% (1)
Installing Squid Web Proxy
Document14 pages
Installing Squid Web Proxy
stiyke
100% (1)
Pacman Game in C
Document11 pages
Pacman Game in C
user3112
0% (1)
Android Practical Questions
Document4 pages
Android Practical Questions
Rashika Jain
No ratings yet
VulnVoIP (Vulnerable VoIP) Solutions
Document10 pages
VulnVoIP (Vulnerable VoIP) Solutions
Felipe Mera
No ratings yet
Hunting Malware With Volatility v2.0
Document40 pages
Hunting Malware With Volatility v2.0
akronareaguy
No ratings yet
Experiment No. 1 Name: Introduction To Matlab & Simulink Matlab Is A Programming Language Developed by Mathworks. It Started Out As A Matrix
Document17 pages
Experiment No. 1 Name: Introduction To Matlab & Simulink Matlab Is A Programming Language Developed by Mathworks. It Started Out As A Matrix
Bharat Behl
No ratings yet
Let's Use Bash on Windows 10! The Lite version
From Everand
Let's Use Bash on Windows 10! The Lite version
John E. Meister, Jr
No ratings yet
MCSA Windows 10 Study Guide: Exam 70-698
From Everand
MCSA Windows 10 Study Guide: Exam 70-698
William Panek
No ratings yet
Catastrophe
From Everand
Catastrophe
Warren Beatty
No ratings yet
Script Kiddies
From Everand
Script Kiddies
Brandon Clark
No ratings yet
Ubuntu: MOTU Developer
From Everand
Ubuntu: MOTU Developer
Frank Cheung
No ratings yet
Postal Service Networkplan
Document49 pages
Postal Service Networkplan
0712gp53
100% (1)
Successful Aging
Document52 pages
Successful Aging
0712gp53
No ratings yet
T-SQL Interview Questions and Answers: WWW - Tsql.info
Document5 pages
T-SQL Interview Questions and Answers: WWW - Tsql.info
0712gp53
No ratings yet
How To Use The Sleuth Kit and Autopsy
Document33 pages
How To Use The Sleuth Kit and Autopsy
0712gp53
100% (1)
How To Use The Sleuth Kit and Autopsy
Document33 pages
How To Use The Sleuth Kit and Autopsy
0712gp53
100% (1)
La Nina Fresa El Padre Nuestro
Document2 pages
La Nina Fresa El Padre Nuestro
0712gp53
No ratings yet
2015 Hebrew Calendar
Document41 pages
2015 Hebrew Calendar
0712gp53
No ratings yet
PsExec - Execute Processes On A Remote System and Redirect Output To The Local System
Document3 pages
PsExec - Execute Processes On A Remote System and Redirect Output To The Local System
0712gp53
No ratings yet
Homeland Security Rescue and Survival Systems Manual - CIM - 10470 - 10G
Document187 pages
Homeland Security Rescue and Survival Systems Manual - CIM - 10470 - 10G
0712gp53
No ratings yet
The Divine Name in Shem-Tobs Matthew
Document47 pages
The Divine Name in Shem-Tobs Matthew
0712gp53
100% (2)
x86 Disassembly
Document147 pages
x86 Disassembly
0712gp53
No ratings yet
Differences Between VSI and CSI Converter Operation Modes.
Document1 page
Differences Between VSI and CSI Converter Operation Modes.
Sushil Namoijam
No ratings yet
TechSpec Mistral
Document4 pages
TechSpec Mistral
Scarab Sweepers
No ratings yet
Ultra Petronne Interior Supply Corp.: Manufacturer of Light Metal Frames
Document1 page
Ultra Petronne Interior Supply Corp.: Manufacturer of Light Metal Frames
jun vincint gelera
No ratings yet
Product Management Self-Learning Manual
Document261 pages
Product Management Self-Learning Manual
Abhishek Arekar
100% (1)
AB-522 Standard Pneumatic Test Procedure Requirements
Document16 pages
AB-522 Standard Pneumatic Test Procedure Requirements
Shank Hacker
No ratings yet
Dynamic Cone Penetrometers: In-Situ CBR in 10 Minutes With Dual-Mass Dcps
Document2 pages
Dynamic Cone Penetrometers: In-Situ CBR in 10 Minutes With Dual-Mass Dcps
d'Hell Caesar
No ratings yet
Chapter 7 Notes Computer Organization
Document20 pages
Chapter 7 Notes Computer Organization
sri
No ratings yet
Ammonia Production From Natural Gas-Haldor Topsoe Process
Document22 pages
Ammonia Production From Natural Gas-Haldor Topsoe Process
Yash Bhimani
No ratings yet
Fast, Accurate Data Management Across The Enterprise: Fact Sheet: File-Aid / Mvs
Document4 pages
Fast, Accurate Data Management Across The Enterprise: Fact Sheet: File-Aid / Mvs
Luis Ramirez
No ratings yet
Module002 LaboratoryExercise002
Document2 pages
Module002 LaboratoryExercise002
Joaquin Smith
No ratings yet
Honeywell P7640B1032 Differential Pressure Sensors PDF
Document2 pages
Honeywell P7640B1032 Differential Pressure Sensors PDF
Marcello Porrino
No ratings yet
Steel Top Hats Battens Capacitytables Product Technical Manual
Document16 pages
Steel Top Hats Battens Capacitytables Product Technical Manual
bhuktha
No ratings yet
GT User Manual Revision 1.10
Document66 pages
GT User Manual Revision 1.10
Pham Long
No ratings yet
Exam Flashcards: by Jonathan Donado
Document520 pages
Exam Flashcards: by Jonathan Donado
solarstuff
100% (1)
Sem
Document31 pages
Sem
kaushik4208
No ratings yet
ASTM F 412 - 01a Standard Terminology Relating To Plastic Piping Systems1
Document13 pages
ASTM F 412 - 01a Standard Terminology Relating To Plastic Piping Systems1
JORGE ARTURO TORIBIO HUERTA
No ratings yet
Manual CRM-91H 93H 9S
Document2 pages
Manual CRM-91H 93H 9S
Filip Filipovic
No ratings yet
Online Examination System For Android
Document7 pages
Online Examination System For Android
Sri Sai University
No ratings yet
Q3 NSP - SLP - RLP
Document41 pages
Q3 NSP - SLP - RLP
Rushi Raval
No ratings yet
Trade List 13 Mar 2019
Document74 pages
Trade List 13 Mar 2019
Bharat Jain
No ratings yet
Oil & Gas Asset Integrity Issues
Document15 pages
Oil & Gas Asset Integrity Issues
yogolain
100% (2)
A9K Catalogue
Document152 pages
A9K Catalogue
Mohamed Saffiq
No ratings yet
Receiving Material Procedure (Done) (Sudah Direvisi)
Document8 pages
Receiving Material Procedure (Done) (Sudah Direvisi)
Hardika Sambilang
No ratings yet
Doing Hot Work On Gas Ship
Document5 pages
Doing Hot Work On Gas Ship
Anonymous icnhaNsF
No ratings yet
Parallel Port Programming (PART 1) With C
Document13 pages
Parallel Port Programming (PART 1) With C
hertzoli
No ratings yet
1 Xpower Safirus Owners Manual en
Document8 pages
1 Xpower Safirus Owners Manual en
Marianela MasyRubi
No ratings yet
Restoration and Adaptive Re-Use of Queen Mary's High School: Phase-1
Document4 pages
Restoration and Adaptive Re-Use of Queen Mary's High School: Phase-1
Sonali Gurung
No ratings yet
Quantity Surveying Division Assessment of Professional Competence Final Assessment 2014 Practice Problems / Part Ii Written Test
Document31 pages
Quantity Surveying Division Assessment of Professional Competence Final Assessment 2014 Practice Problems / Part Ii Written Test
jacky
No ratings yet