Walking Through Windows Applications.

Discuss how to write good code, break bad code, your current pet projects, or the best way to approach novel problems

Walking Through Windows Applications.

Post by Knoble on Thu Jul 07, 2011 2:18 pm
([msg=59542]see Walking Through Windows Applications.[/msg])

Hey Guys,
Just wondering if there is any program I can dL that would display what an application is doing while I'm using it. I downloaded OLLY but it is a bit too shitstormed out with ASM. Thx
Knoble
New User
New User
 
Posts: 10
Joined: Fri Oct 29, 2010 12:54 pm
Blog: View Blog (0)


Re: Walking Through Windows Applications.

Post by mShred on Thu Jul 07, 2011 2:50 pm
([msg=59544]see Re: Walking Through Windows Applications.[/msg])

I highly doubt it.. but there are way to monitor what the program is doing. You could use wireshark to see where the program is connecting. You could use task manager to see how much RAM its taking up.
I don't know exactly what you're asking. So it depends on what you want to do.
Image

For those about to rock.
User avatar
mShred
Administrator
Administrator
 
Posts: 1613
Joined: Tue Jun 22, 2010 4:22 pm
Blog: View Blog (2)


Re: Walking Through Windows Applications.

Post by Knoble on Thu Jul 07, 2011 5:03 pm
([msg=59547]see Re: Walking Through Windows Applications.[/msg])

I'm thinking along the lines of, for example: If I'm using the calculator program and I need to multiply something, is there a program I can run calculator in to see what part of memory that multiplication library, or function, is being accessed at. Another example is, when your writing a program in Dev-C++ or some other program like that, you can track/debug step by step to see exactly how the program is being executed. I'm totally inexperience when it comes to app. hacking or design, so maybe where should I start if I want to alter application code and alter programs that are already written. Sry if this is vague, the problem is I'm not exactly sure what I'm looking for. Thx
Knoble
New User
New User
 
Posts: 10
Joined: Fri Oct 29, 2010 12:54 pm
Blog: View Blog (0)


Re: Walking Through Windows Applications.

Post by VPR3 on Thu Jul 07, 2011 7:38 pm
([msg=59549]see Re: Walking Through Windows Applications.[/msg])

You could try something like windows UMDH utility. You can run it against specific windows applications, like calculator, to see memory allocation, trace memory leaks or whatever.
VPR3
Poster
Poster
 
Posts: 161
Joined: Fri Apr 22, 2011 11:35 am
Blog: View Blog (0)


Re: Walking Through Windows Applications.

Post by fashizzlepop on Thu Jul 07, 2011 11:04 pm
([msg=59554]see Re: Walking Through Windows Applications.[/msg])

If you compile your code with a certain command line flag it will add debug info to the exe and when you run it in Olly and step through it it will display function names and what-not... (I believe)

This stuff would be covered in the book "Hacking: The art of exploitation"
The glass is neither half-full nor half-empty; it's merely twice as big as it needs to be.
User avatar
fashizzlepop
Developer
Developer
 
Posts: 2304
Joined: Sat May 24, 2008 1:20 pm
Blog: View Blog (0)


Re: Walking Through Windows Applications.

Post by JoeyPardella on Fri Jul 08, 2011 6:55 am
([msg=59563]see Re: Walking Through Windows Applications.[/msg])

Also if you take a look at IDA Pro there's a nice graphical application flow graph. it's still assembler but gives you a good idea what the program is doing.

edit: I think Immunity has a graph too and it's free
JoeyPardella
Experienced User
Experienced User
 
Posts: 81
Joined: Tue Jan 04, 2011 8:43 am
Blog: View Blog (0)


Re: Walking Through Windows Applications.

Post by VPR3 on Fri Jul 08, 2011 4:14 pm
([msg=59577]see Re: Walking Through Windows Applications.[/msg])

Hmm. you could try Windbag, runs from the command line. You can dig through all the memory addresses and see exactly what and where things are happening, and rip an application apart thread by thread if you want. You can go deep with this so good luck.
VPR3
Poster
Poster
 
Posts: 161
Joined: Fri Apr 22, 2011 11:35 am
Blog: View Blog (0)


Re: Walking Through Windows Applications.

Post by Knoble on Mon Jul 11, 2011 11:24 pm
([msg=59667]see Re: Walking Through Windows Applications.[/msg])

Sup guys,
this is still related to my above question, just the next step in the process.

So I was messing around in Olly and I managed to bypass serial verification for a crackme type application, but I didn't do it the way it was supposed to be done. I ended up with a .dll, which is what I needed, but it doesn't seem to work. So I'm just wondering if there are any known securities set up that I don't know about safe-guarding this type of approach. Also, I installed the plug-in and it gave me a .dll file in the selected directory, did it perhaps also alter the registry or something, because I tested the .dll on a different computer, transferring it through USB. Thx
Knoble
New User
New User
 
Posts: 10
Joined: Fri Oct 29, 2010 12:54 pm
Blog: View Blog (0)



Return to Programming

Who is online

Users browsing this forum: No registered users and 0 guests