Getting started with WinDbg:

1. Download the Debugging Tools for Windows from the Microsoft website

We recommend you install WinDbg Preview as it offers more modern visuals, faster windows, a full-fledged scripting experience, built with extensible debugger data model front and center.

2. When clicking Download from the Microsoft Store, a prompt will appear, select “Get”

3. Windows will start the download and installation process. A prompt will confirm installation status.

4. Select to “Pin to Start,” close windows by clicking “X” on the top right of Window.

5. Set the Windows Symbol Server path in File > Settings > Symbol path (see example below)

6. Go to your Start menu, select the WinDbg Preview to launch the application

7. The WinDbg initial view

8. What is the difference between User Mode-Debugging and Kernel-Mode Debugging?

In User mode debugging, the code normally delegates to the system API’s to access hardware or memory. You typically are debugging a single executable, which is separated from other executables by the OS. Typical scenario is to isolate memory or application hang issues on Win32 desktop applications. In User mode, the debugger is running on the same system as the code being debugged.

In Kernel mode debugging, the code normally has unrestricted access to the hardware. Typical scenario is driver code developed for hardware devices. When debugging in Kernel mode you typically use two different systems. One system runs the code that is being debugged, and another runs the debugger, usually connected with a cable. Click here for additional information on Kernel mode debugging.

9. Advantages of WinDbg:

  • Extensive numbers of commands and extensions.
  • A useful tool to help understand OS and software running on the system being debugged.
  • Lightweight and can be used in production as it has no dependency, only require an executable (.exe) to run.
  • A useful tool to help isolate User or Kernel mode code that's difficult to troubleshoot on Windows.

10. Common User mode debugging commands:

.hh (Open WinDbg’s help)

Vertaget (Get the version of the target computer)

Symbol Path (Display or set symbol search path)

Version (Dump version info of debugger and loaded extension DLLs)

!ext.help(General extensions)

!analyze -v (Display information about the current exception or bug check; verbose)

11. Common Kernel mode debugging commands:

!analyze

!error (plus error code, e.g. “!error c0000005)

12. Useful links:

Debugging Using WinDbg Preview:

https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/debugging-using-windbg-preview

Getting Started with WinDbg Microsoft Docs:

https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/getting-started-with-windbg

Common WinDbg Commands:

http://windbg.info/doc/1-common-cmds.html

Elementary User-Mode Debugging:

https://microsoft.sharepoint.com/teams/bidpwiki/Pages1/Elementary%20User-Mode%20Debug.aspx

最新文章

  1. Linux 查看进程和删除进程
  2. tcpdump
  3. 利用http缓存数据
  4. 百度数据可视化图表套件echart实战
  5. 对COM 组件的调用返回了错误 HRESULT E_FAIL
  6. android layout布局属性
  7. 20151214study
  8. yum服务器搭建(深入理解yum工作原理)
  9. PHPCMS_v9 wap不同列表采用不同模板的方法
  10. javascript 操作复选框无效
  11. hihocoder 1228 Mission Impossible 6
  12. orczhou----MYSQL
  13. 转载:浅谈Java多线程的同步问题【很好我就留下来,多分共享】
  14. 微信授权登录(PHP)
  15. jQuery preventDefault() ,stopPropagation(),stopImmediatePropagation()
  16. xxl-job安装教程
  17. 【题解】 Codeforces Edu41 F. k-substrings (字符串Hash)
  18. 前端框架之Vue(3)-计算属性
  19. android onPause OnSavedInstance
  20. Intel Galileo驱动单总线设备(DHT11\DHT22)(转)

热门文章

  1. java开发环境配置——IntelliJ IDEA
  2. 经典面试题:从 URL 输入到页面展现到底发生什么?
  3. jq筛选方法
  4. angular打包后路由和文件路径不对
  5. ios手机录屏软件哪个好
  6. .NET和Java之争
  7. JMeter 内置日期(时间)函数总结
  8. js 学习之路5:使用js在网页中添加水印
  9. 爬虫之Requests&beautifulsoup
  10. LeetCode算法题-Quad Tree Intersection(Java实现)