OllyDBG has excellent breakpoint manipulation capabilities and can store breakpoint information across debugging sessions for the main module being debugged. However, there are some limitations to the available functionality which this plug-in attempts to address. The OllyDbg Breakpoint (BP) Manager plug-in was written to provide three main functions- breakpoint exporting, breakpoint importing and automatic breakpoint loading. Offsets are used in place of absolute addresses to support setting and restoring breakpoints on modules that move around in memory. More information, examples and source code are available on the software page of the iDEFENSE Labs web site:

http://labs.idefense.com ("http://labs.idefense.com")

I encourage users to submit useful breakpoint sets they have created with OllyDbg Breakpoint Manager to me for credit and inclusion in future releases and on the release web site.

-pedram

also added to Stuph page. nice work!

Nice one!!!

As always, nice work.

/gerry

Thanks for the kind words all. If anyone constructs an interesting breakpoint list, please share ;-)

nice plugin i normally break on seh handler here in ntdll w2ksp4

77F9250D ntdll.RtlpExecuteHandlerForException MOV EDX, ntdll.77F8A896 ; default handler for any exception that gets raised in seh handler
77F92512 ntdll.ExecuteHandler PUSH EBP ; stack setup
77F92513 MOV EBP, ESP ; stack setup
77F92515 PUSH DWORD PTR SS:[EBP+C]
77F92518 PUSH EDX
77F92519 PUSH DWORD PTR FS:[0]
77F92520 MOV DWORD PTR FS:[0], ESP ; seh handler setup here
77F92527 PUSH DWORD PTR SS:[EBP+14]
77F9252A PUSH DWORD PTR SS:[EBP+10]
77F9252D PUSH DWORD PTR SS:[EBP+C]
77F92530 PUSH DWORD PTR SS:[EBP+8]
77F92533 MOV ECX, DWORD PTR SS:[EBP+18]
77F92536 CALL NEAR ECX ; this calls your handler look at what gets to ecx one line above

and i put a break there and exported it with the plugin
it puts a nice .obp into th dir
ntdll:00012536:#:#

how about conditionals like stopping on CreateFile when hFile == String blah kind of breaks are they implemented too ?? or stopping on TranslateMessage when Handle == #### and msg == WM_BLAH
anyway nice plugin

Thanks. Conditional breakpoints have not yet been implemented. Only regular/log with expression/explanation. I'll look into adding conditionals for another release when I find the time. If someone feels like beating me to it that would be great- I'll update the distribution with all the proper credits.

-pedram

I am new in here!
How can i do some plugings for Olly?

Thx

do you mean you want to write plugins ?? its plugins not plugings btw
if yes then you should take a look a pdk which is available from ollydbg site it comes with two sample source codes for the default bookmark plugin and commandline plugin along with a pre made make files
for bcb5.5 and vc

you should have an idea of what you want to write for
you should have your preferred compilers set up

then as a trial you could try compiling the sample source that comes along
and see how it works out

if you prefer to write plugins in assembly
eviloid has put together a pdk for masm (its not updated yet for v 1.10)
but was for 1.08 version

if you are using vs then alex clark has put together a pdk for
vs you can get it from ollydbg main site

..and theres a delphi version of SDK too..

Thanks for the plugin, Pedram

~BoB~