O'Reilly logo

Windows Debugging Notebook: Essential User Space WinDbg Commands by Dmitry Vostokov, Roberto Alexis Farah

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

lm*

Usually, when we get used to a command we don't try to explore its variations and sometimes one of these variations may give us the information we're looking for. Let's start getting all the basic information from all modules with lm command.

The end address of a module is not inclusive. For example, if the start address is F88AA000 and the end address is F88AB000, then to dump all module bytes we should use the following command: db F88AA000 F88AB000-1.

Displaying all modules:

0:015> lm start end module name 00400000 00427000 mtgdi C (private pdb symbols) C:\development\My Tools\Book\mtgdi\Debug\mtgdi.pdb 5a1c0000 5a2e3000 MSVCR90D (pdb ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required