如何使用ollydbg查找应用程序的功能? [英] How to find a function of application with ollydbg?
问题描述
假设我在下面发布了该应用程序.
Let's say i released the application below.
using System;
using System.Collections.Generic;
using System.ComponentModel;
using System.Data;
using System.Drawing;
using System.Linq;
using System.Text;
using System.Threading.Tasks;
using System.Windows.Forms;
namespace WindowsFormsApplication2
{
public partial class Form1 : Form
{
public Form1()
{
InitializeComponent();
}
private void button1_Click(object sender, EventArgs e)
{
MessageBox.Show("Hello World!","Message Box");
}
}
}
现在这是我的问题:
- 如何找到负责显示的按钮功能 ollydbg按下按钮后出现一个消息框?
- 如何禁用按钮单击?
- How to find the function of button which is responsible to show message box after pressing the button with ollydbg?
- How to disable the button click ?
注释:必须仅使用ollydbg完成此操作.假设我无权访问该代码.
Notes:this must be done with ollydbg only. Assume that i don't have access to the code.
一个分步示例将不胜感激.
A step-by-step example would be greatly appreciated.
推荐答案
使用Olly或IDA会花费很多精力.
Using Olly or IDA is a lot of work for nothing.
使用.NET Reflector进行反编译(有14天的试用期)并下载Reflexil插件以能够修改代码.
Use .NET Reflector for decompilation(there is 14-day trial) and download Reflexil plugin to be able to modify code.
查找位置应该不会太难,因为您已经反编译了源代码.
Finding the place should not be too hard since you have decompiled sourcecode.
如果找不到地方,可以尝试以下方法之一:
If you cannot find the place you can try one of these:
-
将反射器连接到Visual Studio
Connect reflector to Visual studio
导出源代码,然后从Visual Studio中运行它
Export source code and just run it from Visual studio
如果代码被混淆了,我在那儿无能为力,那么您就必须开始使用它,直到您消除混淆为止
If code is obfuscated I cannot help you there, you just must start playing with it till you defeat obfuscation
使用Reflexil插件,您可以简单地删除/修改功能
With Reflexil addon you can simply delete/modify the function
这篇关于如何使用ollydbg查找应用程序的功能?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
