I was wondering if anyone had any code which could trace a compiled executable following its jumps and plotting them out (like how IDA can do) .

Im developing an executable analysis tool, and feel that this would be a very cool feature.
If no one else has done this already, I'll figure out how to do it eventually....

Posted on 2005-09-05 18:22:38 by GNUru
You can use the WIN32 API and run the application in single-step mode... this will be very slow, but should work as long as the application doesn't have any anti-debugging features.

If you go for a kernel-mode approach, recent CPUs has a feature that will only generate the single-step exception on a branch, which will speed this up massively.
Posted on 2005-09-05 18:33:36 by f0dder
there is an old tool by "defiler", the hax0r, which does exactly that
Posted on 2005-09-05 20:40:46 by comrade