Name: OD2-ExPlug v201.13
Date: 10.29.2014
Author: quygia128
Home: http://cin1team.biz
=========================
Introduction:
=========================
OD2-ExPlug is a plugin for latest version of OllyDbg v2.01(x32).
I’m usually use and really like a plugin from AT4RE Team that is “IDAFicator”
by Zool@nd3r but it’s unavailable for the newest OllyDbg2 so i decided to
make own plugin which inside many functions to work under OllyDbg2.
I’m working on my plugin to improve more features and convenient to use OllyDbg2
so if you found any problem/Bug please let me now at:
CiN1 forum/Tuts4you forum/eXeTools forum or via Email: quygia128@gmail.com.
I will fix in the next version.
Thanks you for support.
Special Thanks To: TQN, BoB, phpbb3, Zool@nder, cektop, eXeTools Community, Tuts4you Community, HVA Community.
=========================
Features:
=========================
+ Main Menu +
– Breakpoint Manager
. Import Breakpoints
. Export Breakpoints
– Comment Manager
. Import Comments
. Export Comments
– MAP File Master
. Import Labels
. Import Comments
. Import MAP To Library
. Open Label Tabel
. Clear All Labels
. Clear All Comments
– Plugin Debug Break
. DoMyJob
. Support..
– Help..
– Option..
– About…
+ Disasm Memu +
– Data Copy
. ASNI (str) (Copy ansi string to clipboard) (Ctrl + Alt + A)
. WIDE (str) (Copy wide string to clipboard) (Ctrl + Alt + W)
. Unicode (str) (Copy Unicode string to clipboard) (Ctrl + Alt + U)
. BYTE (Copy 1 BYTE)
. WORD (Copy 2 BYTE)
. DWORD (Copy 4 Byte)
. Address (Copy selected address) (Alt + Insert)
– Breakpoint Manager
. Import Breakpoints
. Export Breakpoints
. Delete All INT3 BPs (Delete all INT3 Breakpoints)
. Delete All Hard BPs (Delete all Hardware Breakpoints)
. Delete All Mem BPs (Delete all Memory Breakpoints)
– Tools
. Notepad
. Calculator
. TaskMgr
. HashTool
. Configuration
– Label Master
. Add New Label (Ctrl + Shift + E)
. Open Label Table (Ctrl + Shift + T/L)
. Follow In Dump (Ctrl + D)
. Search By Google (Ctrl + Shift + G)
– ASM2Clipboard (Ctrl + Shift + A)
– ASCII Hint
– ByteCounter
– Go EIP (Shortcut Only: Esc)
+ Dump Menu +
– Data Copy
. ASNI (str) (Copy ansi string to clipboard) (Ctrl + Alt + A)
. WIDE (str) (Copy wide string to clipboard) (Ctrl + Alt + W)
. Unicode (str) (Copy Unicode string to clipboard) (Ctrl + Alt + U)
. BYTE (Copy 1 BYTE)
. WORD (Copy 2 BYTE)
. DWORD (Copy 4 Byte)
. Address (Copy selected address)(Alt + Insert)
– Follow In Dump (Ctrl + D)
– Follow In Disassembler (Ctrl + Alt + D)
– Create DumpWindow (Ctrl + Alt + C)
– ReverseHex (Ctrl + Z)
– MiNiHash (Ctrl + Alt + Z)
+ Info Bar +
– Add selected count(er)
+ Register Menu +
– Hardware Breakpoint [ESP]
+ INT3Breakpoint Menu +
– Breakpoint->
. Set a few breakpoint
+ HotKey +
1. You must PRESS and HOLD the hotkey in 0.1s for it work
. “Esc” : go EIP(current origin) (Allow on any MDIWindows)
. “,” : Copy BYTE
. “.” : Copy WORD
. “/” : Copy DWORD
. “`” : Copy Address
. “[” : Go to start of function (You must analysis code before use it)
. “]” : Go to end (RET) of function
. “Shift + 4” [CPU Dump] : Set/Remove Memory Breakpoint On Access
. “Shift + 4” [CPU Disasm] : Set/Remove Memory Breakpoint On Excu
. “Shift + 5” [CPU Disasm] : Set/Remove Hardware Breakpoint On Excu
. “Gray *” : Set “Malware Analysis” breakpoint group
. “Gray /” : Set “NET” breakpoint group
=========================
ChangeLogs:
=========================
+ OD2-ExPlug v201.13
– 10/29/2014
. Fixed [Bigger] Internal BUG(Crash OllyDbg in version 12)
. Fixed “Search by Google” (Allows Access if Labels is Exist)
. Fixed “API helper(BTN ?)” (Allows Access & Open API if Labels is Exist)
. Fixed dialog is appeare incorrectly if Not XPStyle.
. Edit Some Shortcut.
. Add Enter(VK_RETURN) Key on “Add New Label” & “Advance Go ExPression”
. Remove Module on “Search by Google”(Keep API Name Only)
. I’m Removing Delay On Windows 8|Above(Not Test) (Thanks to Vic4Key)
. Fix Some BUG in Breakpoint Manager(Import & Export & Delete & Detect Bps)
. Improved Auto Update (Auto restart OllyDbg & Update Plugin)
+ OD2-ExPlug v201.12
–
+ OD2-ExPlug v201.11
– 07/02/2014
. Upgrade Menu “Breakpoints”
. Upgrade “Go Expression”
. Fixed: Run playtime Plugin(Open Lua script on Window 7)
. Add Copy “Unicode(str)”
. Add “Memory Manager”
– Dump(Memory) To File
– Encode/Decode(Add/Sub/XoR/Shift and Rotation Bit/zlib)
– Advance Dump(E/D)
. Add Hotkey for Memory/Hardware Breakpoint(@+ HotKey)
. Add Simple HideOD2
. ++PEB -> BeingDebugged
++PEB -> ntGlobalFlag
++PEB -> ProcessHeap.HeapFlags
++PEB -> ProcessHeap.ForceFlags
++PEB -> ProcessHeap.ProcHeapFlag
+++ Access & Modify API
++API -> CheckRemoteDebuggerPresent
++API -> BlockInput
++API -> OutputDebugStringA
++API -> FindWindowA
++API -> FindWindowExA
++API -> GetTickCount
++API -> KiRaiseUserExceptionDispatcher
++API -> Process32FirstW
++API -> EnumWindows
++API -> Module32Next
+ OD2-ExPlug v201.10a
– 04/19/2013
. Upgrade Menu “Breakpoints”
. Upgrade “Hardware Break[ESP]”
. Add “Find OEP”
. Add “Find All Strings”
. Add “BTN To Run LUA and Python Script”
. Add “BTN To Run Online/Offline API Help”
. Add “Go Expression”
. Change Shortcut of “ByteCounter” to “Ctrl+Shift+B” (“Ctrl+Shift+C” used by OllyGraph)
=========================
Install:
=========================
1. Copy “OD2-ExPlug.DLL & OD2ExPlug.ini” Files to OllyDbg Plugin directory.
2. Copy “EXP” folder to OllyDbg Plugin directory.
3. Enjoy!
=========================
Download:
=========================
NOTES:
You can check and get new version anytime you want, it’s automatically work
form version 201.13 i will be update plugin to my host when new version available.
Check it and Enjoy!
========= ========= ====
Bonus: Plugins are working with OD2-ExPlug v201.11
========= ========= ====
OR
Playtime Plugin[LuaScript] Build r57 Homepage
Download Here
OllyDbg2-python Plugin[PythonScript] Homepage
Download Here Builded by computerline | HVA
OllyMSDN_Fixed_v2.1 Homepage
Download Here
BR,
quygia128
quygia128.wordpress.com 