Thursday, 21 August 2008

[New Tool] OllySocketTrace

OllySocketTrace is a plugin for OllyDbg to trace the socket operations being performed by a process. It will record all buffers being sent and received. All parameters as well as return values are recorded and the trace is highlighted with a unique color for each socket being traced.

The socket operations currently supported are: WSASocket, WSAAccept, WSAConnect, WSARecv, WSARecvFrom, WSASend, WSASendTo, WSAAsyncSelect, WSAEventSelect, WSACloseEvent, listen, ioctlsocket, connect, bind, accept, socket, closesocket, shutdown, recv, recvfrom, send and sendto.

OllySocketTraceScreenshot1

OllySocketTraceScreenshot2

You can download OllySocketTrace from here:

http://www.harmonysecurity.com/OllySocketTrace.html