A-new 发表于 2020-2-5 10:03

OllyDumpEx 1.80

OverviewThis plugin is process memory dumper for OllyDbg and Immunity Debugger.
Very simple overview:
OllyDumpEx = OllyDump + PE Dumper - obsoleted + useful features
Features
[*]Various debuggers supported
[*]Select to dump debugee exe, loaded dll or non-listed module
[*]Search PE File from memory
[*]Multiple Dump mode. Rebuild for typical PE dump, Binary for PE Carving
[*]PE32+ supported (Search and Binary Dump mode only available on 32bit debugger)
[*]Native 64bit process supported (IDA Pro, WinDbg and x64dbg)
[*]ELF supported (both of 32bit and 64bit)
[*]Standalone version available
[*]Dump any address space as section even if not in original section header
[*]Auto calculate many parameters (RawSize, RawOffset, VirtualOffset, ...)
Supported Debugger
[*]OllyDbg version 1.10 (tested 1.10)
[*]OllyDbg version 2.01 (tested 2.01)
[*]Immunity Debugger version 1.8x or higher (tested 1.85)
[*]IDA Pro 32bit build version 5.0 or higher (tested 6.9)
[*]IDA Pro 64bit build version 7.0 or higher (tested 7.1)
[*]IDA Freeware 32bit build version 5.0 (tested 5.0)
[*]IDA Freeware 64bit build version 7.0 (tested 7.0.190307)
[*]WinDbg version 6.x (tested 6.2)
[*]x64dbg (tested 20170822 snapshot)


    v1.80 / 2020-01-06
[*]Bugfix: Fix race condition when reading large amount of memory (IDA)
[*]Bugfix: DYNAMICBASE not working (Standalone)
[*]Bugfix: Fix UI stall race condition issue when press Back to Menu button
[*]Improve: Adjust UI layout for high DPI setting
[*]Improve: Add DebugPriv button for runas administrator (Standalone)
[*]Improve: Add OpenFile button for carving from localfile (Standalone)
[*]Improve: Resolve mapped filename if possible (Standalone,x64dbg)
[*]Improve: Add ReScan marker for rescan required setting changes
[*]Improve: Use segment name as module name when segment not belong to module (IDA)
[*]Improve: Address range autofill use mapped address instead of image base address
[*]Add: File image source use specified file when memory and address base mode selected
[*]Add: Dummy image header mode for image which not have valid image header

alittlebear 发表于 2020-2-5 11:23

FleTime 发表于 2020-2-5 10:23
简单说明一下,此插件是OllyDbg和Immunity Debugger的进程内存转储器。

OllyDumpEx = OllyDump + PE Dum ...

{:301_1009:}一脸懵....我还是默默的去打酱油好了....

FleTime 发表于 2020-2-5 10:23

简单说明一下,此插件是OllyDbg和Immunity Debugger的进程内存转储器。

OllyDumpEx = OllyDump + PE Dumper-已过时+有用的功能

就是长得帅 发表于 2020-2-5 10:45

学习了哈

littlebit 发表于 2020-2-5 11:12

{:301_997:}厉害了,大佬,感谢分享

吾爱007 发表于 2020-2-5 11:21

感谢分享:loveliness:

思想者 发表于 2020-2-5 12:48

支持大作..{:301_1009:}

就是长得帅 发表于 2020-2-5 12:55

英文额吗?

cptw 发表于 2020-2-5 14:31

感谢楼主分享,但完全看不懂!

q510 发表于 2020-2-5 16:40

感谢楼主分享,只会ESP定律脱壳
页: [1] 2 3 4
查看完整版本: OllyDumpEx 1.80


免责声明:
吾爱破解所发布的一切破解补丁、注册机和注册信息及软件的解密分析文章仅限用于学习和研究目的;不得将上述内容用于商业或者非法用途,否则,一切后果请用户自负。本站信息来自网络,版权争议与本站无关。您必须在下载后的24个小时之内,从您的电脑中彻底删除上述内容。如果您喜欢该程序,请支持正版软件,购买注册,得到更好的正版服务。如有侵权请邮件与我们联系处理。

Mail To:Service@52pojie.cn