BugDbg x64
 

Hi,

I had a bit of free time on my hands and also I missed some x64 debugger with command-line (windbg is nice but only if debugging code with symbols) so I started writing my own x64 user-land debugger.

Some screenshots:
http://pespin.com/bugdbg_sc.html

Download (no installation needed):

http://www.pespin.com/bugdbg.rar

Be aware its pre-alpha version so it's not meant for serious work. Definitely more work is needed but I think basic debugging functionality is finished.

Wow, very nice :) reminds me of SoftICE, which is a big plus :)

Great job!

What a nice job cyberbob! This is by far (IMHO) the best x64 debugger nowadays, plz continue its development :).
It works fine on win7x64, but I have a question: I'm planning installing an XP x64 vm, your debugger support that O.S.? Anyone else can confirm that?

Thanks in advance!

thanks! Unfortunately I haven't test it on XP x64 nor Windows 8.

small update, Pre-alpha 2 released.

- added Debug - "Step out" command
- added new commands bpinstr, u
- added different line highlight when jump is taken
- improvments, bug fixes

the same download link http://www.pespin.com/bugdbg.rar

Thanks for the update.

Pre-alpha 3 released

• added File - ��Attach to process�� option
• added Debug - ��Detach debuggee�� option
• added possibility to modify Register value from context menu
• added new commands ��inject��, ��detach��
• improvments, bug fixes

Like hiei said, this is the best x64 free debugger! Thank you Cyberbob!

A little question: Memory can be changed from MemoryView Window? How?

Thanks in advance!

using your keyboard, the same way as in WinDbg. Its read-only if you display it in ASCII format.

Pre-alpha 4 released

• added backwards disassembling
• added breakpoint condition to software breakpoints
• miscellaneous debugging improvments

thanks MarcElBichon for posting update status, recently I have some problems with connecting to exetools forum :(

small update cause I introduce some nasty bug with line highlight in previous release and I dont want it to hang for download.

Pre-alpha 5
• added new commands ��~��, ��bd��, ��be��, ��readmem��
• improvments, bug fixes

Those links no longer work for me. Where can I get a copy from Cyberbob?

the link
http://www.pespin.com/bugdbg.rar
is working
??

it works for me, maybe try

http://pespin.w.interia.pl/bugdbg.rar

For those whom can't download from CyberBob's site, maybe you can find useful this link (Pre-alpha 5):
http://www.datafilehost.com/download-b21904fc.html

Uploaded by me.

Pre-alpha 6 released

• added Configuration - Options �C Exception handling page
• added new commands ��bpdll��, ��createthread��
• improvments, bug fixes

Your debugger is improving a lot. I am starting to use it regularly on windows 8. Please accept my thanks on behalf of this community for your hard work.

I was wondering if you could possibly implement support for drag and drop and command line/startup parameters. This would allow a user to register a shell extension so they could use the windows right click menu to open an x64 exe in the debugger automatically. It would also be useful if a user could drop a file into the disassembly pane to automatically disassemble it for debugging. It would be much quicker and more convenient than using the open menu. ;)

thanks for feedback chessgod101

no problem, I will try to add drag & drop, command line to the next release, seems easy to do;)

small update added features proposed by chessgod101 (how could I live without drag&drop ;) )

Plus some improvements in exception handling.

pre-alpha 7:

+ added drag & drop support
+ added command line support
+ added Configuration - Options �C Dissasembly page
+ improvements, bug fixes

btw. no switches in command line. Start the target program like this e.g.

bugDbg.exe c:\Windows\System32\notepad.exe c:\test\my.txt

Glad I found this thread. This tool is begining to look very useful, maybe there will not be a need for Olly x64 anymore ;)

if an assembler + a plugin interface is implemented in bugdbg,then truely we will not need anymore olly x64.

yep,
I tried it on a complex target and found it very promising. It still suffer being in a pre alpha stage, and still lacks of several useful things (es better interface more towards Olly stile, better coloring of ASM and so on). Looks really as a promising substitute for Olly x64.

If you want it can also be converted in an opensourced project so as to be able to add more complex interfaces, but it's your decision of course.

Very nice so far. I don't suppose there is any chance of open sourcing it? It seems like it could serve as a very nice base for a community driven userland x64 debugger. Something that in my opinion is currently lacking.

Thanks for the contribution!

imho it's a useless to offer to anyone.
reverse community know how to use and preserve the commercial,well my 2 cents.

no, sorry at the moment no chance for open sourcing it

@ Cyberbob
Yes,really BugDBG is still lacking the nice and handy interface of ollydbg and all current x64 debuggers lack that nice interface except IDA But always OllyDbg stay the best for debugging.
So,We will wait for a nicer interface in BugDBG :)

@ mm10121991
well, you can't make everyone happy :)
I personally like it and don't need interface with dozen of toolbars, status bar and dozen of different dialogue's instead I prefer command line.

Ok, I am not expecting a lot of toolbars and dialogs but at least some asm coloring.
almost all x64 debuggers lack asm coloring except IDA and which is an important and helpful feature when tracing obfuscated code.
last but not least thanks for your nice work :)

agree, also the jmp highlights as Olly does is imho an important feature, asm readability in general is a nice thing to improve.

I also agree asm coloring is useful and its something I'd like to have, but its only a spare time project and I had more pressing issues, features.

What about a roadmap, plans for the future? Looks nice so far.

no roadmap, since its a hobby project and I don't know how long I will continue it.

I have plans for the future versions but I prefer not to reveal them since its easier for me to code when I don't have any commitments, promises to fulfill.

another small update v0.7.1

+ added assemble command ��a��
+ added File - ��Save patched executable as...�� option
+ added Configuration - Options - Misc page
+ improvements, bug fixes

To use the added assemble command just type an address (or register64, symbol) e.g.

a rip

after typing the command a dialogue where you can write assembly code will pop up, this allows to write more than one instruction at once and when you press OK code will compiled with NASM and copy directly into memory. Also, if the patch is inside target executable it's possible to save changes File - "Save patched executable as.."

micro update added Jumps and Calls highlighter (coloring) I hope everyone likes pink ;) (it's possible to change in Options)

Hats off to you cyberbob, the coloring feature plus patching and save binaries is making this "little" project getting bigger and plenty useful. IMHO this is by far the best x64 debugger because of its simplicity, its interface and it does what is supposed to do. All that in 5mb of size :).

I'd be willing to make a little donation ($) if I'd have to, as a proof that I would like to see more improvements ;). A project like this one is unique!

small but hopefully useful improvement

+ added jumps, loops destination drawing area to disassembly window

this is how it looks like
http://pespin.w.interia.pl/bugdbg073.png

if the jump is taken its green if its not taken its grey.

Wow.. nice job.

Have been playing with it on Win8 x64, its do the job def !

wow it's improving a lot at each release. Excellent job mate, excellent