Step Into(skip exceptions)(Shift+F7): This allows us to enter a routine or execute the next step in a repeat instruction while passing the current exception to the application. Step Into(F7): This allows us to enter a routine or execute the next step in a repeat instruction. Restart(Ctrl+F2): This terminates the debugged process and reloads it.Ĭlose(Alt+F4): This terminates and unloads the debugged process. Pause(F12): This suspends the current process. Run(skip exceptions) (Shift+f9): This will resume the process while passing the current and all following exceptions to the process. Run(F9):This starts or resumes the process normally. These commands provide some of the key operations that you will need to use in your regular debugging activities. In the debug menu, you can see that 圆4_dbg has the same hotkeys as Ollydbg. Thread Start/Thread End: This allows us to break in system when our debugged application initializes or terminates a thread. The DLL Load breakpoint occurs before any of its code is executed.
If unchecked, it will attach without suspending the process.ĭLL Load/DLL Unload: This will break in the system function when a new library(DLL) is loaded into or unloaded from the active process. Thread Entry: This will break on the first instruction of any new thread initialized by the current process.Īttach Breakpoint:When this is checked, it will cause 圆4dbg to break in the DbgUiRemoteBreakin function when attaching to an active process. For general debugging, this is the only breakpoint you will need to have checked.ĭLL Entry: This will break on the entry point of any DLL which is loaded by the process you are debugging. This allows you to break on this function.Įntry Breakpoint:This causes 圆4dbg to break on the Entry point on the application.
This can set parameters or even be used by certain protectors to implement anti-debug technology. TLS Callbacks: The TLS Callback is a function which is called before the main application runs. System Breakpoint: When loading a new process, the will cause 圆4dbg to break in the system function which initializes the application you are attempting to debug.
Here is the gist of what these features do. The options here are just like those found in ollydbg 1.10 with a few additional features. The configuration in the screenshot above is what I typically recommend and use for simple debugging.
0 kommentar(er)
