Hello,

I've got Windows XP (SP1) and SoftICE installion went pretty quick and painless. afteward i've started to play with it a little and tried to parctice few bpx's. that's when i've discover that SoftICE doesn't break in (or out) on anything that i've set.

I've the tried the usual MessageBox, MessageBoxExA calls and i've got few crackme's that are using those api calls (i've double check that) but still SoftICE ignores it.

I've went and checked the company homepage, they do say that it's problmetic to run SoftICE over new platforms and i've went through all the soultions. inculding replacing the 'OSINFO.DAT' and the 'NTSYMBOLS=YES' and still nothing working. i've also tried few versions of SoftICE and still nothing :|

Has anyone ran into this issue before? anyone can suggest a patch nor soultion?

Thanks in advance!

Hi, did you read the faq?

Hello,

Yes, i've read the faq and also been in http://frontline.compuware.com/nashua/kb/doc/1846.asp

And i've 1st took it with DriverStudio v3.1 and it's still doesn't work :|

I've also got SoftICE Lite (?) which suppose (at least by the .NFO)
to be perfectly working on both Windows XP (SP1) and NT (SP4)

Have i missed something? i've also tried to re-create the symbol (.pdb/.dbg)
from my current osntkrnl.exe and push it to SoftICE, didn't made any change.

I did something wrong here?

Hi

And of course you read with great interest the section of the faq entitled

I am not able to set breakpoint with new version of Softice (on NT system)?

...looked at the threads mentioned in the answer, explored the "Similar Threads" that were linked to on those pages, exhausted all the documentation that comes with the software, and still are having problems? Oh my.

Kayaker

Those kayak paddlers are always very subtle.

Regards,

Not so subtle I hope that the poster doesn't pick up on the importance of 'Context' when setting Softice breakpoints...

Oh my, i was so tired last night i've skipped right over that paragraph. i'm extermly sorry the problme was indeed solved using 'addr' before 'bpx' !

I have to mention that the tons of cracking tutorials and i think pretty much almost all SoftICE tutorials out there are talking about 'bpx' without 'addr'
which is very confusing. made me think the problme was SoftICE itself nor the way i'm programming it to work ...

Thanks for your help guys! And i'm sorry again for rushing it without fully going over your faq. honestly after a long day of fighting with SoftICE and endless reboots, i had enough. Thanks once again!

And the REASON most of those tuts do not mention the use of context sensitive breakpoints is because they did not become context sensitive until the more recent versions of SICE. But as you will find in the Threads here on the subject of the recent versions of the software, now they are.

Regards,

That is true, that many tutorials leave the addr out. But they say that you should read the SoftICE manual.. Have you read it? Many functions to learn..

You could also look 4 threads down - SoftIce patch for NT/XP is discussed.

SiGiNT

I think he's trying to get DriverStudio 3.1 to work, not SoftICE 4.05..

HMMMM!

He says SoftICE, and later says tried DiverStudio also.

SiGiNT

have uread the post by bestobest