Log in

View Full Version : LINK: Windows Debuggers: Part 1: A Windbg Tutorial

Kayaker
February 26th, 2004, 23:57
There's a new article at Code Project some might find useful. If nothing else Windbg is handy for analyzing crash dumps...

Windows Debuggers: Part 1: A Windbg Tutorial

http://www.codeproject.com/useritems/windbg_part1.asp#_Toc64133661
crUsAdEr
February 27th, 2004, 12:04
are you psychic or what?
I was just whining to Clandestiny at 2am last night about how sucky Windbg is... this is good stuff
Thankx
Kayaker
February 27th, 2004, 12:44
Lol, that must have been 2am your time, I know Clandestiny goes to bed earlier than that

WinDbg is nice because you can write your own kdextension dlls if need be. This in itself is a useful exercise since Softice KDExtensions a la IceExt are in fact based somewhat loosely around the WinDbg dll extension format. Learning to write a WinDbg kdextension is the first step in creating your own Softice counterparts.

I noticed also in one of the comments a link to a nice table:
Frequently Used [WinDbg] Debugger Commands
http://www.tonyschr.net/debugging.htm
crUsAdEr
February 28th, 2004, 04:08
Does anyone know how Windbg implements its remote debugging functionalities? I notice that if softice installed on the debuggee will be first in the chain to handle int breakpoints etc, that is because i guess sice installed int3 hook later than windbg... so it gets called first?

I was thinking of writing a small sys that will rehook those int1/3, giving windbg ability to debug softice at will... however i have got no clue how windbg does its job over the serial port... thus I am writing to ask for any advice on this matter ?

Thanks,
crUs
NeO
February 28th, 2004, 17:19
Kayaker first of all i would like to say that i am impressed ,in what you really did to help this reversing comunty!Because you post ,sources ,links has help a lot of ppl in their coding and making their knowledge becomming bigger!There should be more ppl like you.You can find a lot of ppl in here which are more or less bragging about doing this and that .But normally all good stuff stays private and nothing is released!

So i can say one thing thanks for sharing






Hello crUsAdEr ltns...wb...
can you plz email me...


NeO

bye
Kayaker
February 28th, 2004, 21:04
Quote:
[Originally Posted by NeO]Because you post ,sources ,links has help a lot of ppl in their coding and making their knowledge becomming bigger!
So i can say one thing thanks for sharing


Hi NeO

That's the result I hope to achieve, and the feeling I hope to foster on this board. I think it's working because a lot of people do contribute their source and ideas, and like you I always appreciate when I find something I can learn from. Thanks for the encouragement though, that too helps

Cheers,
Kayaker