When I type "bpx hmemcpy" and press enter I get the following error: "Symbol not defined (hmemcpy)"

Hi,
1)You should read the posting guidelines which is the link is shown below my signature

2)check your winice.dat which should not commented with ;

EXP=c:\windows\system\kernel32.dll
EXP=c:\windows\system\user32.dll
EXP=c:\windows\system\gdi32.dll
EXP=c:\windows\system\comdlg32.dll
EXP=c:\windows\system\shell32.dll
EXP=c:\windows\system\shell232.dll
EXP=C:\windows\system\advapi32.dll

3)hmemcpy function doesn't exist in win2k or winnt

Regards

I'm using Softice 4.05 NT with the XP patch (I'm running XP).

If I can't use hmemcpy then what can I do?

Eventually you didn't search the board.Theres a button near to the right hand corner
Search for WinXP

Windows XP does not have the hmemcpy routine. That only exists in 9x.

You'll have to find another method to land on the information you are trying to bpx on.

-nt20

Alright I searched and it seems that the only solution is to have Win98. I may as well install 98 on my other partition just for debugging.

It's annoying though. Surely Numega must have resolved this by now.

Look! I has nothing to do with Numega.


The Windows XP operating system itself DOES NOT contain the routine hmemcpy. It is a Microsoft issue. XP is based off of WIndows NT.

hmemcpy is a crappy old 16 bit routine, in the heart of Win9x. Almost all of Win9x underlying kernel is still 16 bits ! That's why its so slow compared to Win2k/XP, because it's always going through a call gate (thunks).

-nt20

You don´t need hmemcpy at all. Infact it´s alot better to NOT use hmemcpy at all. Unless you are lazy and don´t want to learn new stuff all the time :P
Btw, win98 is ALOT faster on this machine than XP.
Microsoft XP is just crap when it comes to cracking. Win2k or Win98 are the only choices you have

Like what? As a newbie to Softice it is very hard since 85% of the tutorials on the web seem to be written in 1998-1999 which means Win98. So as I read all these tutorials that say use "hmemcempy" or use "windowboxa"...etc I feel powerless as I have WinXP and therefore a crippled Softice.

I wish some sites would make some Softice tutorials for XP otherwise it feels like I'm going in a time warp to 1998.

A better way to do the same would be:

1. Get a utility that can dump imports sections. You can try programmerstools.org for the same.

2. Get a good API reference Help file. The same is available as FTP (free) from Borland's site

3. Get a internet connection.

Once you have all 3, you can do the following steps:

1. Search for your particular API in the help file. Chances are it will describe what it does. It will also highlight you as to whether it is due to become obsolete. In case it is, it will also highlight which alternate API to use.

2. In case you do not manage to find info over there, you can connect to msdn.microsoft.com and type your API in the SEARCH function. You will DEFINITELY get the necessary information you seek.

Have Phun

If you install Softice properly on XP ( Driverstudio 2.7), apply the patches originally made by Kayaker to fix the loader problem, and finally get hold of SuperBPM for NT, all you will miss is the hmemcpy function and the breakpoint on range function. It takes time to learn how to use Softice to its fullest potential. Surely you can learn a lot from tutorials written some years ago, and that is a good start. But you can learn more from try out Softice on your own while reading the manuals. I used to crack on Win98 and WinME, and sure I used hmemcpy most of the time to "get into" programs. But what I sacrified by doing that was getting a deeper understanding of for instance api calls in general. After getting over to XP, and to some extend, Win2K, it was as I had to learn a lot of things all over again. The truth was that I had to learn how to use Softice properly for the first time....
Today I don't even miss the hmemcpy function, because I never need it. And believe me, it is much more fun nowadays, because I have started to see how useful Softice really can be when you get to terms with the more subtle aspects of it.
Good luck in your cracking efforts...

regards,
hobgoblin

I need a tutorial on API calls and how they relate to Softice and breakpoints, do you know any good links for this info?

Thanks.

Try the cracker notes, form Tornado.
Used to be in the Inmortal descents site.

http://www.woodmann.net/IDArchive/ID-RIP/releases.htm

Has a beginner's API reference.

Hmm, that doesn't really help cause it doesn't say if those API calls are valid in WinXP. Basically I need a version of Softice that can understand WinXP API calls, and then I need a list and description of all the WinXP API calls. I don't see any other realistic way of learning this.

BTW: Do I want "DriverStudio" or "SoftICE Driver Suite"? They seem like similar products.


http://www.compuware.com/products/driverstudio/

Nick, IMHO If you have a choice I would recommed the SoftIce Driver Suite. If and when you become familiar with it, that suite of tools offers a decent range of tools that you can explore.

Depending upon your knowledge of code, Softice can be a real pain. Debugging from the low end of it all can be difficult, but stay with this board it has the best *minds* out here and we all learn from each other.

As far as using XP or 98, hmm, I have both machines running its repectible sice(s) and I think the XP is acyually faster than the 98. Assuming of course that yours is properly configured..........

Alot of my work is typically fast and down and dirty.

Good Luck