Where communities thrive

Join over 1.5M+ people
Join over 100K+ communities
Free without limits
Create your own community

Explore more communities

x64dbg/x64dbg

An open-source x64/x32 debugger for windows.

People

Repo info

Activity

10:07

mrexodia commented #2637
09:48

morsisko commented #2637
08:20

mrexodia commented #2637
08:13

cn-fairy opened #2637
07:55

cn-fairy opened #2636
Apr 13 20:24

AppVeyorBot commented #2627
Apr 13 19:46

mrexodia synchronize #2627
Apr 13 19:43

mrexodia commented #2634
Apr 13 19:43

mrexodia on development

Add module name to import symbo… Merge pull request #2634 from t… (compare)
Apr 13 19:43

mrexodia closed #2634
Apr 10 18:12

mrexodia commented #2635
Apr 10 16:16

lynnux commented #2635
Apr 10 16:12

lynnux opened #2635
Apr 10 10:47

AppVeyorBot commented #2634
Apr 10 10:28

torusrxxx opened #2634
Apr 09 19:18

mrexodia commented #2633
Apr 09 19:13

aaron-dadum opened #2633
Apr 08 08:41

mrexodia commented #2632
Apr 08 08:41

mrexodia closed #2632
Apr 08 01:22

DiskGetor edited #2632

x64dbgbot

@x64dbgbot

<Antitrack> try translate.google.com

<GroupAnonymousBot> Or deepl.com

<pmhdii> Ok . What is Address Offset ?
For ex: ss:[eax+300]
For ex: ss:[eax+30C]
300 30C
This Is address offset ?
This address mapped to virtual address ?

x64dbgbot

@x64dbgbot

<l1unk> both are offsets (re @pmhdii: Ok . What is Address Offset ?
For ex: ss:[eax+300]
For ex: ss:[eax+30C]
300 30C
This Is address offset ?
This address mapped to virtual address ?)

x64dbgbot

@x64dbgbot

<mrexodia> Probably eax contains a pointer to a structure and the 300 and 30c are offsets from that bade (re @pmhdii: Ok . What is Address Offset ?
For ex: ss:[eax+300]
For ex: ss:[eax+30C]
300 30C
This Is address offset ?
This address mapped to virtual address ?)

x64dbgbot

@x64dbgbot

<chief> hi

<chief> how to remove x64dbg from the right click menu

<chief> nobody with a mod role so ill ping @mrexodia as you probably own the program

<morsisko> reverse it

<chief> reverse what

x64dbgbot

@x64dbgbot

<morsisko> the setup file that adds the thing to context menu

<chief> how do i do that

<morsisko> using x64dbg 😉

<GroupAnonymousBot> cb

<GroupAnonymousBot> chief - read https://github.com/x64dbg/x64dbg/wiki/Frequently-Asked-Questions

<GroupAnonymousBot> Q: How do I remove the Debug with x64dbg entries from my context menu?
A: Download & execute this regfile (remember to Save as...).

<chief> thanks groupanonymous

x64dbgbot

@x64dbgbot

<pmhdii> Thanks thanks (re @mrexodia: Probably eax contains a pointer to a structure and the 300 and 30c are offsets from that bade)

<pmhdii> Thanks (re @l1unk: both are offsets)

Torusrxxx

@torusrxxx

hello @mrexodia @x64dbgbot

x64dbgbot

@x64dbgbot

<mrexodia> Hello @torusrxxx

<mrexodia> Hope you’re doing well

x64dbgbot

@x64dbgbot

<fauxlefam> Guys, how do you deal with addresses that are not directly editable in the main window? like I found a potential string but it redirect me to the dump. I can change it there but how do I gather more information about this address?

<morsisko> breakpoint on read

<fauxlefam> Ah I see

<fauxlefam> let me debug this thing further

x64dbgbot

@x64dbgbot

<fauxlefam> Can't quite figure it out here...if I set a breakpoint on read I get redirected to ntdll.dll debugging there usually causes me to rise an access violation error

<fauxlefam> I dont think patching that file is a good idea lol

<morsisko> well this is related more to RE, not to the x64dbg itself

<morsisko> probably it just garbage at this point, and it gets reallocated at ntdll

<fauxlefam> how am I suppose to tackle this issue? the idea is to remove a button but there are no direct strings found by x64dbg

<morsisko> first step would be to move forward and debug the target as the strings weren't present

<morsisko> but again, this is channel about x64dbg and this is question about reverse engineering

<fauxlefam> oh

<fauxlefam> right

<fauxlefam> OOps

x64dbgbot

@x64dbgbot

<Senton> Hi! How to remove x64dbg from the Windows 10 Context Menu (Right Click Panel)?

<morsisko> https://github.com/x64dbg/x64dbg/wiki/Frequently-Asked-Questions

<morsisko> Q: How do I remove the Debug with x64dbg entries from my context menu?

<Senton> A: ?

<morsisko> did you click the link?...

<Senton> yes thanks, it's a reg file

<Senton> cheers

<Senton> 🙂

x64dbgbot

@x64dbgbot

<treb> Is there any way to directly compare which instructions are used in one program vs the ones of a very similar one

<treb> Specifically one that is validated with a key compared to one which isn’t

<treb> I’ve heard about trace into but I couldn’t figure out how to utilize the log file it outputs

<treb> Same for animate

<treb> Willing to pay if whatever help I receive is meaningful as I’m kinda on a deadline

x64dbgbot

@x64dbgbot

<mrexodia> Tracing will get you the data you need probably, but there’s no functionality in x64dbg to do the diffing. Another option is to log all branches to a text files and see where things start to differ

Chat via Matrix