OllyDBG Plugins

Our post regarding OllyDbg can be found here. Since we like this debugger a lot, we thought that we should have a page that contains a list of all OllyDBG plugins. Since there are too many and a lot newer ones are being released every few days, we will keep updating this list. Where-ever possible we have posted direct links for plugin downloads. In some cases, we found that the files were hosted on OpenRCE. Credits to them for the same! While, in some more cases, we have had to link them to download web-sites.

Please bear with us as there are a lot of plugins to be added and only a limited time with us. Please submit any new plugins via the Submit Your Tool! option. We will be eventually adding about 10 plugins every day.

AnalyzeThis!: AnalyzeThis! is an OllyDbg plugin to allow OllyDbg’s analysis function to operate outside of the marked code segment, by telling OllyDbg the current segment *is* the code segment.
Download AnalyzeThis! (analyzethis.zip) here.

Anti Anti Debugger: Anti Anti Debugger is a plug-in for OllyDbg that aims to hide most of the well knowns debuggers from most of anti-debugging techniques. It currently hides OllyDBG from the following tricks BlockInput, SuspendThread, UnhandledExceptionFilter, Process32Next, Module32Next, ZwQuerySystemInformation, ZwQueryObject, TerminateProcess, !ZwOPenProcess, FindWindow, IsDebuggerPresent (via PEB patching, BeingDebugged flag), NtGlobalFlags, HeapFlags, GetTickCount, ZwQueryInformationProcess, ZwSetInformationThread and OutputDebugStringA.
Download Anti Anti Debugger v0.2.1 (aadp4olly v0.2.1.7z ) here.

Anti Anti Hardware Breakpoint: Anti Anti Hardware Breakpoint is a plug-in for OllyDbg was written to hook into NTDLL and restore the DRx registeres after a Structured Exception Handler (SEH) event. Essentially, an anti anti hardware breakpoint plug-in.
Download Anti Anti Hardware Breakpoint (ollydbg_hardware_breakpoint.zip) here.

APIFinder: APIFinder is a simple plug-in that assists in the location of and breakpoint setting on arbitrary API.
Download APIFinder (APIFinder.zip) here.

Asm2Clipboard: Asm2Clipboard is a simple plug-in that copies ASM code to the clipboard.
Download Asm2ClipboarD (asm2clipboard.zip) here.

AttachAnyway: AttachAnyway is a PoC OllyDbg plugin designed to show how to remove a process’ hook on NtContinue by the anti-debugger-attach method devised by Piotr Bania. It is not intended to be a universal plugin for all anti-attach methods, just one example of how you can do it. It works by enumerating all processes, searching their virtual memory space for a JMP hook on the NtContinue method, then replacing the jump with the original bytes from a non-hooked process, then calling the OllyDbg AttachToActiveProcess API.
Download AttachAnyway (AttachAnyway.zip) here.

Attach Extended: Attach Extended is a plugin, with which you can attach to a process by identifying its PID directly, not only selecting process list. In addition, you can find PID of process by dragging a small cursor on each window. This can be used on some protection which remove process from process list like GameGuard.
Download Attach Extended v0.1 (AttachExtended_v0.1.rar) here.

Breakpoint Manager: The OllyDbg Breakpoint (BP) Manager plug-in was written to provide three main functions- breakpoint exporting, breakpoint importing and automatic breakpoint loading. Offsets are used in place of absolute addresses to support setting and restoring breakpoints on modules that move around in memory. More information, examples and source code are available in the bundled archive.
Download OllyDbg Breakpoint (olly_bp_man.zip) here.

Bulk Labelling PlugIn: Bulk Labelling PlugIn is really only useful to those who write their own software, using an IDE that can create a Memory Map. The record that is built, via MAPFilePerCharacterHandler. In this case you would find it very useful to be able to transfer your Symbols into OllyDbg. Things become much easier to find!
Download Bulk Labelling PlugIn v1.0 (BlkLabel-v-1.0.rar) here.

Catcha!: The Catcha! plugin will help you to attach to your program automatically as soon as possible each time your program runs (outside OllyDbg). It helps reversers reach the target program EntryPoint by hooking the EntryPoint to a trap function that raises debug exception by INT3 instruction so we can break into that function before attaching and returning to the EntryPoint.
Download Catcha! v1.1 (Catcha-1.1.rar) here. We are working on a valid download link for this plugin.

CLBPlus!: The CLBPlus! plugin extends standard capabilities of conditional log break-pointing. It uses new feature of OllyDbg (implemented from version 1.10) which allows you to pass commands to plugins from “Set conditional log breakpoint window“.
Download CLBPlus! (CLBPlus.zip) here.

Cleanup Ex: The Cleanup Ex OllyDBG plugin deletes all .udd, .bak files from a directory.
Download Cleanup Ex v112 (g_cleanupex112.zip) here.

CommandBar: The CommandBar OllyDBG plugin adds SoftICE commands in a small bar on the bottom of OllyDBG.
Download CommandBar (g_cmdbar300108.zip) here.

CodeDoctor: CodeDoctor is a OllyDBG plugin that helps you deobfuscate data and move NOPs to the bottom with a undo or redo last operation option. It does a lot more!
Download CodeDoctor v0.90 (CodeDoctor_v0.90.rar) here.

Data Ripper: Data Ripper is an easy way to rip any kind of data from an app being debugged using Ollydbg. The ripped data can be formatted and “declared” in the syntax of the popular programming languages MASM, C/C++ and Delphi. It is useful whenever you need to rip data, tables etc out of an app so the data can be used in another compiled program.
Download Data Ripper v1.3 (DataRipper-1.3.rar) here.

DebugPlugin: DebugPlugin loads OllyDbg and breakpoints on load plugin routine.
Download DebugPlugin (TBD_DebugPlugin.zip) here.

Searches leading to this post:
OllyDbg Plugins, ollydbg plugin, ollydbg, olly debugger plugins, g_cmdbar300108 zip, ollydbg commandbar, commandbar ollydbg, ollydbg download, prevent anti debugging ollydbg, ollydbg 100 plugins