Questions Linux Laravel Mysql Ubuntu Git Menu

HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin

How to enable Microsoft Symbol Server in OlyDbg?

Tags:

symbols

debugging

ollydbg

dbghelp

OlyDbg version 2 was recently released. It now supports using the Microsoft Symbol Server for debugging:

It supports Microsoft compilers via dbghelp.dll. New is support for symbol server, stack walking using dbghelp and names of procedure parameters.

How do i make OlyDbg use Microsoft Symbol Server?

What have you tried?

enter image description here

Long answer:

i've pointed OlyDbg to the folder that will contain symbols after DbgHelp.dll downloads them
i've told OlyDbg that it's okay to access the Microsoft Symbol Server
i've told OlyDbg that it's okay to use DbgHelp.dll
i've tried updating the version of DbgHelp.dll that OlyDbg 2.0 ships with (2008) to the version that ships with the Windows 8 SDK

i've set a system environment variable:

_NT_SYMBOL_PATH=SRV*d:\Symbols*http://msdl.microsoft.com/download/symbols

i've added SRV*d:\Symbols*http://msdl.microsoft.com/download/symbols as a "directory" that OlyDbg should search, ala the YouTube video

What makes you think it's not working?

a) The symbol directory is empty
b) There is no internet traffic to msdl.microsoft.com
c) No symbols appear in OlyDbg 2.0

See also

How to use OS symbol files in OllyDbg? (OlyDbg v1; the guy who knew refused to answer because he was grumpy)
How to use OS symbol pdb files in OllyDbg? (OlyDbg v1)
YouTube: HowTo: Using OllyDbg v2.1d and v2.1.0.4 with MS debug symbols server (Warning: mute audio)

like image

965

asked Feb 24 '13 21:02

Ian Boyd

People also ask

How do I add a symbol to a Visual Studio Server?

From Visual Studio, select Tools > Options > Debugging. Select Symbols from the list, and then select the + sign to add a new Azure DevOps symbol server location.

Where is SymChk EXE located?

SymChk is delivered with Debugging Tools for Windows (http://msdn.microsoft.com/en-us/windows/hardware/gg463009). Strange is that the debug tools aren't installed with Visual Studio. So, after installing the Windows SDK one can find symchk under C:\Program Files\Debugging Tools for Windows (x64) (or similar).

1 Answers

When starting ollydbg with the options you configured, you should have gotten a message in the "Log data" child window saying: Missing SYMSRV.DLL, Microsoft Symbol Server is deactivated.

The file that downloads the symbols from microsoft servers is called symsrv.dll. I don't think microsoft provides a single download for only that file. However, it is included in various microsoft developer packs:

microsoft windows sdk
microsoft windows driver kit
microsoft debug-tools (now in windows driver kit?)

Just download and install any of these and search the folder for symsrv.dll. Be careful not to get the x64 variant as it has the same name. Copy this file to the ollydbg directory and everything should work.

like image

161

answered Sep 22 '22 04:09

typ1232

Sign in to Comment

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With