OllyDbg
OllyDbg is a 32-bit assembler level analyzing debugger for Microsoft Windows. It is useful for reverse engineering and malware analysis, allowing the user to step through code, set breakpoints, and examine registers and memory.
debugger
disassembler
reverse-engineering
malware-analysis
OllyDbg: 32-bit Assembler Level Analyzing Debugger for Microsoft WindowsSoftware
Reverse engineer and analyze malware with OllyDbg, a powerful 32-bit assembler level debugger for Microsoft Windows.
What is OllyDbg?
OllyDbg is a 32-bit assembler level analyzing debugger for Microsoft Windows. It is a very popular tool among reverse engineers and malware analysts due to its versatility and wide range of features useful for analyzing executable files.
Some key features of OllyDbg include:
- Disassembler - allows disassembling code from executable files and libraries, showing both the instruction itself and the comments added by the compiler
- Graphical User Interface - easy to use interface with different windows showing code, registers, memory dumps, threads and modules etc.
- Breakpoints - ability to set software or hardware breakpoints on code execution, memory access or port access
- Stepping - step through code instruction-by-instruction while examining the effects on processor registers and memory
- Plugins - supports plugins that extend functionality for more advanced debugging and analysis
- Scripting - built in debugger scripting capability for automating tasks
With these and many other features, OllyDbg provides extensive control and visibility into program execution at a very low level. This makes it a popular choice for tasks like crackme solving, game cheating, unpacking executables, analyzing malware, detecting vulnerabilities and more.
OllyDbg Features
Features
- Disassembler
- Debugger
- Hex editor
- Imports reconstructor
- Direct assembler
- Code injector
Pricing
- Free
- Open Source
Pros
Free and open source
Powerful debugging capabilities
Plugin support
Good for reverse engineering
Lightweight and fast
Cons
Steep learning curve
Limited to 32-bit processes
No official updates since 2011
User interface not intuitive
Official Links
The Best OllyDbg Alternatives
Top Security & Privacy and Reverse Engineering and other similar apps like OllyDbg
Here are some alternatives to OllyDbg:
Suggest an alternative ❐
X64dbg
x64dbg is an advanced open-source x64/x32 debugger for Windows. It is designed for software developers to aid in reverse engineering and analyzing Windows binaries and programs. Some key features of x64dbg include:GPU decoding and tracing to debug modern graphics APIs like DirectX and OpenGLConditional, logging, memory and hardware breakpointsDisassembly view...
Immunity Debugger
Immunity Debugger is a popular Windows debugger focused on analyzing malware. It has an intuitive graphical user interface to help visualize program execution flows and offers advanced debugging capabilities useful for reverse engineering.Key features of Immunity Debugger include:Ability to debug malicious software safely in a controlled environmentConditional breakpoints based on...
Ghidra
Ghidra is a software reverse engineering (SRE) suite of tools developed by the National Security Agency (NSA) of the United States. It was first released at the RSA Conference in March 2019 as an open-source project.Ghidra provides a graphical user interface and a set of analysis tools that allow security...
WinDbg
WinDbg is a low-level debugger for Microsoft Windows systems and is one of the primary tools used for analyzing crashes, hangs, and other issues in Windows software. It is included in the Windows Driver Kit and part of the Windows SDK.Some key features and capabilities of WinDbg include:In-depth inspection of...
Binary Ninja
Binary Ninja is a versatile reverse engineering platform used for software analysis, vulnerability research, and reverse code engineering. It provides disassembly, decompilation, graphing, scripting, and other functionality to examine and modify binary programs.Some key features of Binary Ninja include:Supports a wide range of architectures including x86, ARM, MIPS, PowerPC, and...
REDasm
REDasm is an assembler and disassembler tool aimed at reverse engineering software. It supports disassembling code from platforms like x86, ARM, PowerPC, and MIPS. Some key features of REDasm include:Graphical user interface for easy navigation and analysis of disassembled codeSupports analysis of multiple file formats like PE, ELF, Mach-O, and...
Radare2
radare2 is an advanced, modular, portable reverse engineering framework. It provides a rich set of tools for analyzing binary files, disassembling code, debugging programs, analyzing malware, and more.Some of the key features of radare2 include:Multi-architecture disassembler supporting many Instruction Set Architectures like x86, ARM, MIPS, PowerPC, and moreNative debugger that...
GNU Project Debugger
The GNU Project Debugger (GDB) is a free and open source debugger that can be used to debug programs written in languages like C, C++, Objective-C, Fortran, Ada, Go, and Rust across many platforms including Linux, Unix, and Windows.Some key features of GDB include:Step through program execution line by lineSet...
RemedyBG
RemedyBG is an IT service management (ITSM) software developed by BMC Software. It enables organizations to improve IT service availability and performance while reducing costs and risks.Key capabilities and benefits of RemedyBG include:Incident management - Track, manage and resolve user-reported incidents and service interruptionsProblem management - Identify root causes of...
Bokken
Bokken is a graphical user interface intended to be used with pyew and radare2 reverse engineering frameworks. It allows users to disassemble, debug, and analyze malware binaries without needing to have extensive knowledge of command line tools or reverse engineering concepts.Some key features of Bokken include:Intuitive user interface for analyzing...
PEBrowseDbg64 Interactive
PEBrowseDbg64 Interactive is a powerful user mode debugger for 32-bit and 64-bit Windows applications. It features an intuitive graphical user interface that allows you to interactively debug your code by setting breakpoints, stepping through code, examining variables and memory, etc.Some key features of PEBrowseDbg64 Interactive include:Supports debugging 32-bit and 64-bit...
ArkDasm
ArkDasm is a feature-rich graphical disassembler and debugger that allows analyzing and reverse engineering executable files for Windows, Linux, and MacOS operating systems. It can disassemble object code, bytecode, shared libraries, dynamic link libraries, and more to transform machine-readable code into human-readable assembly language.With an intuitive user interface, ArkDasm makes...
Visual DuxDebugger
Visual DuxDebugger is a powerful visual debugging and profiling toolkit designed specifically for Unity game development. It provides a range of tools to inspect, analyze and optimize Unity projects and content in real-time.Key features include:In-game debugging - Pause gameplay and step through code line-by-line to identify bugs.Memory profiling - Detect...