Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » WinDbg » Debugging   (RSS)
Sorry, but there are no more tags available to filter with.
Wednesday, June 04, 2008 12:50 AM

Look at the operating system version and SP details from the dump in WinDbg..

This is a very common question, we encounter almost all the times. Just imagine a situation, we have got a memory dump from somewhere and want to see what operating system which is run there and what SP is installed.. For this, there is a very simple
Posted by Jigar Mehta | 0 Comments
Filed under: ,
Wednesday, June 04, 2008 12:46 AM

How to change value of register when doing live debugging with Windbg?

Windbg has not only registers reading functionality but it can also modify registers when doing live debugging.. Its really useful sometimes to modify the register values and take different path to check for particular code branch.. You can modify the
Posted by Jigar Mehta | 0 Comments
Filed under: ,
Wednesday, November 07, 2007 6:17 PM

Interesting windbg command-line parameters..

Here is a list of few interesting command-line parameters and their mapping to interactive commands in windbg.. PS: Taken from "Advanced Windows Debugging" (the best debugging book, I have ever come across!!).. Go grab your copy! Stay tuned..
Posted by Jigar Mehta | 1 Comments
Filed under: ,
Wednesday, November 07, 2007 6:12 PM

How to install windbg for post-mortem debugging..

I was looking for a way to install windbg as postmortem debugger so that everytime any process crashes or exits unexpectedly, windbg is launched automatically and I can take a look at whats happening there! Windbg has special command line option for installing
Posted by Jigar Mehta | 1 Comments
Filed under: ,
Wednesday, November 07, 2007 5:45 AM

Extracting modules (EXE, DLL, and other binaries) from memory dump..

Yet another debugging challenge. Imagine a situation where you get a memory dump from customer and need modules (DLL, EXE, OCX etc.) to further debug.. (.NET modules can be used to look at source code by reverse engineering..) SOS.dll is at the rescue.
Posted by Jigar Mehta | 0 Comments
Filed under: ,
Tuesday, November 06, 2007 10:08 PM

How to debug startup code for a process which is started by some other executable!

Yet another debugging challenge.. The problem is, we want to debug the startup code for an application which is run by some other application! e.g. I will open a console (cmd.exe) which in turn opens calc.exe and I want to debug the initial calc.exe code..
Posted by Jigar Mehta | 1 Comments
Filed under: ,
Monday, October 29, 2007 8:03 AM

How to look at value of structure object who is member of Class object while debugging in WinDbg??

Sometimes when you debug applications, it happens that you have got the pointer to class which has few member variables including structures and another class objects! How to look at values of those inner class/structure variable's members?? So, here
Posted by Jigar Mehta | 0 Comments
Filed under: ,
Monday, October 29, 2007 6:09 AM

How to break in WinDbg when particular function returns specific value??

If you are debugging a lot, you might come across a need where you need to put a breakpoint on a function and special requirement is you need to break only when that function returns a specific value!! e.g. I am checking for CoCreateInstance method from
Posted by Jigar Mehta | 2 Comments
Filed under: ,
Monday, October 29, 2007 5:15 AM

Looking at commands supported by WinDbg extensions..

If you want to look at commands supported by any windbg extensions, you can follow various ways. You can use !<ext_name>.help command to see all the commands supported by that extension. Replace <ext_name> with your extension module name.
Posted by Jigar Mehta | 0 Comments
Filed under: ,
Saturday, October 27, 2007 9:19 AM

How to attach WinDbg to a service?

There are various ways to do this. Find the PID for process that is hosting the service. You can do this with the help of command, tasklist /svc Look for service and associated PID, then go to command prompt, into the directory where windbg is installed
Posted by Jigar Mehta | 2 Comments
Filed under: ,
Friday, October 26, 2007 5:18 AM

Loading/reloading symbols for just one module..

Many a times it happens that from within a debugging session, we need to load / reload symbols for a particular module (Talking in context of WinDbg).. e.g. we started debugging, set normal symbol path and down the line while debugging, came to know that
Posted by Jigar Mehta | 1 Comments
Filed under: ,
 
Page view tracker