OpenRCE

About Articles Book Store Distributed RCE Downloads Event Calendar Forums Live Discussion Reference Library RSS Feeds Search Users What's New

Customize Theme

Flag: Tornado! Hurricane!

Created: Thursday, August 20 2009 18:45.47 CDT

Printer Friendly ...

oSpy is back

Author: oleavr

# Views: 12010

It started out as a quick and dirty tool to scratch an itch while reverse-engineering ActiveSync. From that point on it just kept growing, but I thought it was okay as I wasn't going to publish it anyway. Was just one of those tools that you whip up to help you reverse one specific thing, and then forget about it forever.
Time went by, moved on to reversing other things, and hey, I could just add some more hacks to this SocketSpy thing (which later became oSpy) and I'd save some time. Anyhow, eventually it seemed this tool could be useful for a few things, so I decided I'd publish it, even if I was far from proud of the code.
Moving a little forward in time, about three years ago I decided it was time to start working on a rewrite in order to do things properly and make my dreams come true. I had this pile of ideas that I was dying to implement, but that I felt didn't fit in oSpy1.
Still limited to spare-time hacking there was only so much I could get done, but I got the "backend" bits pretty much done and working. But my hacking sprints were many months in between, and I barely even had a UI yet. It got as far as http://oleandre.wordpress.com/2008/06/23/ospy-and-jit-x86-machine-code-generation/, but I eventually realized that this wasn't going to help anyone anytime soon, it was just too ambitious, I needed a full-time job doing this if it was ever going to happen.

So coming to realize that I have finally abandoned the rewrite efforts and decided to brush the dust off oSpy1 and start fixing bugs, improving the UI, adding new features and try to make it suck less with every release. Also rewrite some bits here and there as I go along.

oSpy 1.10.0 marks the beginning of this era, and there's a summary of changes here:
http://www.openrce.org/downloads/details/231/oSpy

Please don't hesitate to file bugs, send me feature requests, flames, rants, contribute code, contribute artwork -- any contribution is very much appreciated! Let's make 1.10.1 suck even less! :)

Blog Comments

2GooD	Posted: Friday, August 21 2009 02:36.12 CDT
Keep up the good work! \David

There are 31,313 total registered users.

Recently Created Topics
[help] Unpacking VMP...	Mar/12
Reverse Engineering ...	Jul/06
hi!	Jul/01
let 'IDAPython' impo...	Sep/24
set 'IDAPython' as t...	Sep/24
GuessType return une...	Sep/20
About retrieving the...	Sep/07
How to find specific...	Aug/15
How to get data depe...	Jul/07
Identify RVA data in...	May/06

Recent Forum Posts
Finding the procedur...	rolEYder
Question about debbu...	rolEYder
Identify RVA data in...	sohlow
let 'IDAPython' impo...	sohlow
How to find specific...	hackgreti
Problem with ollydbg	sh3dow
How can I write olly...	sh3dow
New LoadMAP plugin v...	mefisto...
Intel pin in loaded ...	djnemo
OOP_RE tool available?	Bl4ckm4n

Recent Blog Entries
	halsten	Mar/14
Breaking IonCUBE VM
	oleavr	Oct/24
Anatomy of a code tracer
	hasherezade	Sep/24
IAT Patcher - new tool for ...
	oleavr	Aug/27
CryptoShark: code tracer ba...
	oleavr	Jun/25
Build a debugger in 5 minutes
More ...

Recent Blog Comments
	nieo on:	Mar/22
IAT Patcher - new tool for ...
	djnemo on:	Nov/17
Kernel debugger vs user mod...
	acel on:	Nov/14
Kernel debugger vs user mod...
	pedram on:	Dec/21
frida.github.io: scriptable...
	capadleman on:	Jun/19
Using NtCreateThreadEx for ...
More ...

Imagery

SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit