Why do people use VM to debug an .exe? as a follow up questions someone told me to absolutely not to patch an exe on my hdd (x64dbg) I could not understand what does it suppose to mean? Where do I patch the exe then?
Why do we use debugger(ollydbg or x64dbg) on Virtual Machine?
1k Views Asked by Crows Ravens At
1
There are 1 best solutions below
Related Questions in DEBUGGING
- Eclipse find source file from library
- Debug native code in Android Studio
- Breakpoint "concurrency" in Intellij
- PhpStorm IDE. Collapse custom/debug code
- How does one debug infinite recursion in Haskell?
- Android Studio missing exception stacktrace in Logcat
- java FileNotFoundException wont locate a file in the same project
- How can I debug scala.js unit tests?
- Why Eclipse Debugger does not stop on scoped exception breakpoint (how to stop on handled exception)
- Suggestions for my Selection Sort / Java
- Fortran Debugging
- Debug Excel VSTO add-in when launched by double-clicking existing file
- Starting GDB with interpreter mi via .gdbinit file
- How to print call stack in Swift?
- Preventing threads in Xcode
Related Questions in OLLYDBG
- What does MOV EAX,DWORD PTR DS:[ESI+EBP*8] do?
- Finding static addresses in .exe file
- binwalk in reversing switch
- What are the differences between OllyDbg and WinDbg?
- Why are the cpu-registers in OllyDbg not sorted alphabetically?
- Unpacking WinUpack 0.39 with Ollydbg 1.10
- Assembly stack index address
- windows process memory layout
- ollydbg change unicode string bulk method
- error when trying to move the first byte from a string into a register
- find out what instructions write to this memory address olly dbg cheat engine
- x64dbg jump arrows disappears when scrolling the page
- Editing assembly in WinDbg
- Manually setting breakpoints in WinDBG
- OllyDbg doesn't work in Windows 7 x64
Related Questions in DBG
- How to debug .so on aix which is invoked from java
- Unable to configure Notepad++ DBGP plugin. Xdebug already installed
- dword ptr ss:[esp+0xA] Isn't it correct to get the syntax corresponding to the esp+0xA address?
- Hook breakpoint in ida7.0 failed
- erlang dbg - trace calls to all functions by all functions
- Where is erlang dbg module gone on rebar3 build?
- how to define metadata for @llvm.dbg.declare?
- unimplemented function msvcr120.dll when launching dbg debugger on ubuntu
- How to fix error "could not initialize WinDbg engine" in ida pro 7.5?
- Is there a tracing debugger like `dbg` available for Haskell or OCaml?
- Android NDK | How to debugging app startup or suspend app until debugger connected
- IDA Pro Windbg Commands do not work
- Extract .class from EXE
- Ruby debug output - switch on/off easily
- Disassamble ELF file - debugging area where specific string of binary is loaded
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Your question is relatively broad with at least 2 possible scenarios. Let me explain.
Scenario 1:
That someone may mean don't patch the application, since it will ruin your original copy. Point is VMs are relatively reusable and disposable. Thus experimenting, patching, destroying an application inside VM will have zero impact on your actual machine (at least theoretically, since in real world malware etc can escape from a VM). Since even if you patched the wrong file/screwed up, all you need to do is restore the VM.
Scenario 2:
If you are into OS debugging/advanced patching, your "someone" may be referring to whats called a Kernel debugging. Since kernel debugging means having a parallel machine, (physical or virtual) inspect the whole operating system in which your application is running. It is same as when you attach debugger to an application, but this is at the lowest Operating system level.
From the way the question is framed I am more inclined that someone is talking about Scenario 1!