-
Notifications
You must be signed in to change notification settings - Fork 34
/
Readme.txt
28 lines (23 loc) · 1.54 KB
/
Readme.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
OllyCallTrace v1.0 (23 October 2007)
By Stephen Fewer of Harmony Security (www.harmonysecurity.com)
----[About]-------------------------------------------------------------
OllyCallTrace is a plugin for OllyDbg (version 1.10) to trace the call
chain of a thread allowing you to monitor it for irregularities to aid
in the debugging of stack based buffer overflows as well as to quickly
plot the execution flow of a program you are reversing.
----[Usage]-------------------------------------------------------------
Simply install the plugin and set a breakpoint on a location you want to
trace from, e.g. ReadFile() or WSARecv(). When this breakpoint is hit,
activate OllyCallTrace and press F7 to begin the automated single
stepping and recording of the call chain. When you are finished tracing
the code, pause execution or disable OllyCallTrace and view the
OllyCallTrace Log to see the recorded call chain.
Double clicking on any Call/Return instruction in the OllyCallTrace Log
window will bring you to that location in the OllyDbg disassembly
window. The recorded call chain is highlighted with blue being for the
main module, yellow for system modules and green for all other modules.
The call chain is also displayed in a nested format to make it easier to
read. All irregularities are marked in red.
----[License]-----------------------------------------------------------
The OllyCallTrace source code is available under the GPLv3 license,
please see the included file gpl-3.0.txt for details.