Streebgreebling
November 25th, 2005, 14:36
Hi,
I have just started using Ollydbg to do my first crack. It's tough going, but I've made progress already and found some of the areas that I need to modify.
But there's something really basic that I haven't been able to work out from the tutorials. I can only get Olly to break if I already know where I want it to break, i.e. if I can search for some text that identifies an appropriate code segment.
In the program I am cracking, I have to click a button to start the registration process. I want Olly to break the moment I click that button. Trouble is, I don't know what code it runs when that button is clicked - I've been able to find some code later on and break in there, but it's later on than I need and I haven't been able to trace far enough back through the jumps.
So, is there a way to tell Olly to break "on next mouse click" or something similar?
A second question - I have been working my way backwards through the code by following the 'Jump from xxxx' reference shown in the pane under the CPU window. However I've reached a point where no reference is given to the calling function, so I have no idea how to trace back to the previous code. Are there any other ways of finding out what line of code executed immediately before the current breakpoint?
Thanks in advance!
Arthur
I have just started using Ollydbg to do my first crack. It's tough going, but I've made progress already and found some of the areas that I need to modify.
But there's something really basic that I haven't been able to work out from the tutorials. I can only get Olly to break if I already know where I want it to break, i.e. if I can search for some text that identifies an appropriate code segment.
In the program I am cracking, I have to click a button to start the registration process. I want Olly to break the moment I click that button. Trouble is, I don't know what code it runs when that button is clicked - I've been able to find some code later on and break in there, but it's later on than I need and I haven't been able to trace far enough back through the jumps.
So, is there a way to tell Olly to break "on next mouse click" or something similar?
A second question - I have been working my way backwards through the code by following the 'Jump from xxxx' reference shown in the pane under the CPU window. However I've reached a point where no reference is given to the calling function, so I have no idea how to trace back to the previous code. Are there any other ways of finding out what line of code executed immediately before the current breakpoint?
Thanks in advance!
Arthur