|
softice question
I'm trying to crack a java prog with some native methods.
I disassembled the dll in IDA and produced a map file. With Msym.exe i created a sym file. In symbol loader i loaded the native dll and the nms file. In SI i set bpx on methods used in native dll - however SI doesn't break :(. Please help solve my problem. |
Hi,
Is SI able to break on WinMain in a windows exe file ?? Or is it only in the dll u encountered this problem ? Mayby you need to get the correct debugging symbols for you windows platoform. hxxp://www.microsoft.com/ddk/debugging/symbols.asp Install the symbols (normally in %SystemRoot%\Symbols), Use nmsym to create .nms file for ntoskrnl.dbg NOTE: that ntoskrnl.pdb must be in the same folder, as ntoskrnl.dbg Add lines to softice init file: NTSYMBOLS=ON LOAD=%SystemRoot%\Symbols\exe\ntoskrnl.nms Reboot. Hope it helps u out .::| scriptOr |::. |
Hi scriptOr,
thanks for your info! SI breaks 'normal' with other apps - also if i'm setting a bpx _DllMain for mentioned dll. I tried several times >30 to set bpx's. It worked once! Hmmmmm i have no idea whats going on. Regards vader |
Hi,
That sounds strange - I normally only get such an error if SI is NOT able to read any symbols. Have you tried TABLE to see what symbol tables are loaded and also which one is the current that SI is using ? And also use SYM for display of the symbols ? That way you can see if SI knows about the symbol you are trying to break on. Sorry i can't help more, .::| scriptOr |::. |
Hi,
yeah - tried table and sym coomand - everything looks ok :-( tks again vader |
| All times are GMT +8. The time now is 04:50. |
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX