Skip to content

Instantly share code, notes, and snippets.

@retorillo

retorillo/windbg.md

Last active July 1, 2018 17:13
Show Gist options
  • Save retorillo/f0fbe240fb112b0f1b99b2fc8437de6e to your computer and use it in GitHub Desktop.
Save retorillo/f0fbe240fb112b0f1b99b2fc8437de6e to your computer and use it in GitHub Desktop.
Download ZIP
Raw
windbg.md

windbg, windbgx quick reference

Windbgx does not support UTF-16 with nobomb

In vim, change fileformat by using :set fenc=utf-16 | set bomb.

must read

reload module forcely

  • .reload /f app.exe
  • NOTE: REQUIRES AT ANY REBOOT

breakpoint

  • bp main
  • bc * to clear break points
  • bl to list break points

enable line breaks

  • .lines -e

change radix

  • b
  • b 10 to change to radix 10

symbol path

  • .sympath+ to append
  • .sympath to replace

load source file

  • lsf

watch and trace

  • x, dv to local dump
  • dv variable to enumerate named variables
  • dx variable or ?? variable to enumerate member of struct
  • dx struct->member to dump specified member
    • Use the following format specifier to change render
    • dx variable, x in hexiadecimal
    • dx variable, d in decimal
    • dx variable, o in octal
    • dx variable, b in binary
    • and more
  • K to show stacktrace
  • gn to "Go to unhandled error", gh to "Go to handled error"

exceptions

  • sx Show current setting
  • sxe eh Break first-chance C++ EH exception
  • sxd eh Break second-chance C++ EH exception
  • sxn eh Notify C++ EH exception without break
  • sxi eh Ignore C++ EH exception
  • sxr eh Reset C++ EH exception by default
  • sxr * Reset all by default
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment