O'Reilly logo

Memory Dump Analysis Anthology, Volume 5 by Dmitry Vostokov

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Chapter 15. Miscellanious

Native Script Debugging

When testing a WinDbg script for the CARE system[75] (the script enumerates all files on a Windows PC and processes memory dumps to generate a log file with the out-put of debugger commands) we found that after successful processing of many files the next launched WinDbg instance suddenly showed this message box:

Native Script Debugging

To find out, we attached another WinDbg instance to its process in order to examine the real command line. In this small case study instead of using kb WinDbg command to show a stack trace and its arguments we employ kn, .frame and kb <lines> commands for visual clarity and to illustrate stack ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required