.

mtdbg       Kolibri. 
       .  
-  ,   ,    
meos.sysbin.com ( ""),     ,  
  .

 .

    mtdbg     . 
    .     ,
     .

mtdbg   ,   .  
     .   
 Backspace,Delete,Home,End, /.
    .   
    .

       "quit" ( ).
,            .

        , 
   .  mtdbg    
,         , 
    ,  ,  
 (  ).

    ,     
load <   > [<>]
:
load /rd/1/example
LOAD   /rd/1/aclock w200 h200
  LoaD  /hd0/1/menuetos/dosbox/dosbox
,         , 
     .
 load       (  
 ).    ,    
 ;   ,     
 .   - "file not found",   
 .

          (,
 ) -  ,     
0x<hex__> <>
(,    , ).     
       fasm'.
   
load-symbols <   >
 ,    load    
   ,   ,   .dbg
(/rd/1/example.dbg     ),    ,
   (  "Symbols loaded",   
).

  ,    .  
  :     (-
 ),      , 
    ,     ,
    .   ,   ""
          .
mtdbg     (mxp,mxp_lzo,mxp_nrv,
mtappack)         "" .
  ( 'y'  <Enter>),    .
    ,    - , 
  "unpack" ( ).     ,
  ,          
 ! [   Kolibri 0.6.5.0,    
,        
kpack'           
 .]

     "terminate" ( ).
 "detach" ( )   ,  
   ,      .
       .

       "reload" (
).     ,    
 (  )   (    ),
     
terminate
load <last program name> <last program arguments>
     ,   
(     mtdbg) (    ), ..  
 ,  
load <last program name> <last program arguments>,
  reload      ;  , load ,
   ,     (. ) 
 ,  reload   .

   "help",     "h".
    .
help      .
help          
.
help        .
:
help
help control
h LoaD

     ,   :
-  .        
   ("Running"/"Paused"),    "No program loaded".
-   -     , 
  eip   .    :  hex-
     : CF,PF,AF,ZF,SF,DF,OF:   , 
    ,  ,  .
  ,    ,  .
-   ( ) -     
-   ( ) -     
   
-  
-   

     ,    ,  
 
d <>
 d      .
        
u <>
  u.
:
d esi -  ,    esi (,  
    rep movsb)
d esp -  
u eip -  ,   

  mtdbg  
-  
-      (8 32-, 8 16- 
  8 8-)   eip;  16-  8-  
    32 
-    +,-,*,/ (  ) 
  
- [    ] ,   dbg-
     2^32.
 :
eax
eip+2
ecx-esi-1F
al+AH*bl
ax + 2* bH*(eip+a73)
3*esi*di/EAX

? <>
   .

       r, 
   :
r <> <>
r <>=<>
(       ).    
    - 24     eip.


,  load     .
       .
 F7 (   -  "s")    
 ,     , 
     .   int 40h
(   sysenter  syscall)     .
 F8 (   -  "p")    
 ,     ,   
 rep/repz/repnz   loop    .
   ,  ,   
,  , ,    
/ -   .

g <>
    ,    
eip= ,      .
 "g"      .

     "stop" ( ).

 ,    ,   
       .
    , breakpoint(s), 
 - .     -   ,
..    eip=< >.   
 
bp <>
.       ,   
  "g"  .

    -      .
        ( 
   x86,    4  ).
bpm <> -         
bpm w <> -       
bpmb,bpmw,bpmd <> -      , 
     . bpm  bpmb - .  
bpmw,bpmd         (.. 
)      (..   4).
bpmb,bpmw,bpmd w <> -     .

       "bl", 
        "bl <>". 
    "bc <>",   
  "bd <>",     , 
 "be <>".

.

1.         
   int3 (    !).   
      ,     ,
           ( 
   "int3 command at xxx").      ,  
      g / bp.     
        ,     
       "g"  "bp",   "u","d","?" 
      /.
2.        16-  .
3.   ,      ,
       ;    
     . ,  "d"    
   ,     .

						diamond
						mailto:diamondz@land.ru
