Home > Computers & Technology > Programming > Microsoft Programming > C & C++ Windows Programming

Accelerated Windows Memory Dump Analysis, Fifth Edition, Part 1, Process User Space: Training Course Transcript and WinDbg Practice Exercises with Notes by Software Diagnostics Services & Dmitry Vostokov

Author:Software Diagnostics Services & Dmitry Vostokov [Software Diagnostics Services] , Date: February 15, 2020 ,Views: 234

Accelerated Windows Memory Dump Analysis, Fifth Edition, Part 1, Process User Space: Training Course Transcript and WinDbg Practice Exercises with Notes by Software Diagnostics Services & Dmitry Vostokov

Author:Software Diagnostics Services & Dmitry Vostokov [Software Diagnostics Services]
Language: eng
Format: epub
Publisher: OpenTask
Published: 2019-11-23T16:00:00+00:00


We close logging before exiting WinDbg:

0:003> .logclose

Closing open log file C:\AWMDA-Dumps\Process\x64\AppO.log

Exercise P11: Analysis of an application process dump (AppP, 64-bit)

Goal: Learn how to analyze various exception patterns, raw stacks, and execution residue.

Patterns: Divide by Zero; C++ Exception; Execution Residue.

Launch WinDbg from Windows Kits \ WinDbg (X64).

Open \AWMDA-Dumps\Process\x64\AppP.exe.7628.dmp

We get the dump file loaded:

Microsoft (R) Windows Debugger Version 10.0.18362.1 AMD64

Copyright (c) Microsoft Corporation. All rights reserved.



Download

Accelerated Windows Memory Dump Analysis, Fifth Edition, Part 1, Process User Space: Training Course Transcript and WinDbg Practice Exercises with Notes by Software Diagnostics Services & Dmitry Vostokov.epub


Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.