I have been trying to solve some "crackmes" (from http://crackmes.de) using WinDbg. Most of the solutions I have looked at involve using Olly Dbg to make modifications to the assembly; is there a way to do this in WinDbg?
Editing assembly in WinDbg
4.6k Views Asked by Chris Finley At
2
There are 2 best solutions below
0
EdChum
On
You can view the assembly code using the disassembly window and disassemble code using u command:
http://msdn.microsoft.com/en-us/library/windows/hardware/ff541965%28v=vs.85%29.aspx
and more info here:
http://msdn.microsoft.com/en-us/library/windows/hardware/ff540661%28v=vs.85%29.aspx
Related Questions in ASSEMBLY
- Is there some way to use printf to print a horizontal list of decrementing hex digits in NASM assembly on Linux
- How to call a C language function from x86 assembly code?
- Binary Bomb Phase 2 - Decoding Assembly
- AVR Assembly Clock Cycle
- Understanding the differences between mov and lea instructions in x86 assembly
- ARM Assembly code is not executing in Vitis IDE
- Which version of ARM does the M1 chip run on?
- Why would %rbp not be equal to the value of %rsp, which is 0x28?
- Move immediate 8-bit value into RSI, RDI, RSP or RBP
- Unable to run get .exe file from assembly NASM
- DOSbox automatically freezes and crashes without any prompt warnings
- Load function written in amd64 assembly into memory and call it
- link.exe unresolved external symbol _mainCRTStartup
- x86 Wrote a boot loader that prints a message to the screen but the characters are completely different to what I expected
- running an imf file using dosbox in parallel to a game
Related Questions in WINDBG
- WinDbg of .Net application shows 2 threads with locks, but empty !locks and !syncblk
- using WinApi 32 in Windbg Breakpoints based actions
- Windows kernel debugging with windbg through network: is there an alternative to ".kdfiles"?
- WinDbg session does not connect
- TEB representation for ARM64, xpr register
- How to pull .natvis data out of a PDB?
- Exception code c0020001 on shutdown - how to determine which managed code function didn't run?
- How Windows Handle to associate corresponding object type?
- Is there any way to debugging Windows XP/2000 BSOD during installation?
- Viewing the named security attributes for token in windbg (kernel mode)
- DLL not found when Debugg using Windbg for Windows7
- Understanding the Dump for w3p app with WinDbg
- find driverObject from module address using windbg kernel mode debugging
- core dump files batch processing (Windows)
- Invalid Pointer Read (Access Violation) from undocumented KERNELBASE methods crashing Windows Services
Related Questions in CRACKING
- im stuck trying to guess a password to a server im accessing through netcat for a ctf
- How long does it take to crack an eight character zip compressed password ?
- X64dbg not showing me strings
- Can't find a strings on x64dbg, IDA PRO
- Trying to crack an old encrypted volume with Hashcat/Johntheripper, disappointed there aren't any simple/intuitive wordlist generators
- Is there any method to secure onnx file on app side?
- C program compiled file with clang leads to zsh: segmentation fault error when i try to change the assembly code
- Password protected ZIP file - How to bypass the password successfully
- CPP function in IDA PRO
- Invalid expression term '>' SubnauticaBZMultiplayer Mod
- Why do i not see the folder "GAC_MSIL" in C:windows/assembly - while cracking DevComponents(DotNetBar)?
- Accept cookies on selmnium openbullet
- Using John the ripper without passwd file
- Injecting code into Windows process running under Wine in Linux
- RSA with python Challenge, Any tip on cracking python code
Related Questions in OLLYDBG
- x64dbg jump arrows disappears when scrolling the page
- Patching a file with x64dbg after finding ram addresses
- Save memory dump edit into an exe file in OllyDbg
- how to compare two exe files with x64dbg
- Why conditional breakpoint doesn't work in some address in ollydbg?
- How to know number of parameters in x86-64 assemble(windows)
- How can I import my breakpoint from OllyDBG to my C++ code?
- create symbol or rename a function inside WinDBG
- How to replace a store of EAX with a store of an immediate constant?
- Runtime error C0000005 of an unpacked executable file [UPX 3.91+]
- Trying to determine and change "Nation/locale/region Code" for application inside disassembler
- OllyDbg not properly interpreting SSE2 instructions and operands
- Interruption service in assembler (int 21h) and it's behavior (w/OllyDbg)
- Is digital certificate of PE(Portable Executable) file is in overlay of file?
- OllyDbg - How can I add more instruction space to a .exe file?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
You can use the a command:
http://msdn.microsoft.com/en-us/library/windows/hardware/ff538153(v=vs.85).aspx