Skip to main content
2,971 questions
Newest Active Bountied Unanswered
Filter by
Sorted by
Tagged with
0 votes
0 answers
86 views

Let's say we have a multithreaded Windows service. Spontaneously, application (one of its main threads) gets stuck, and I'm able only to analyze a crash dump (see excerpt with thread in question below)...
Aleksey Ivchenko's user avatar
  • 299
0 votes
0 answers
63 views

We are using Debugdiag when analyzing memory dumps, The dump itself may contains sensitive customer data. The question, is the report being generated by debugdiag, can contain sensitive data? e.g the ...
ilansch's user avatar
  • 4,888
-2 votes
1 answer
130 views

I'm trying to write a Python script, in order to perform dump analysis (as heap_stat.py was doing before). In order to make this work, I'm thinking of using "cdb.exe", the Windbg commandline....
Dominique's user avatar
  • 17.6k
0 votes
1 answer
106 views

In a dump file I see many System.Int64[] objects totalling ~4.5 GB. All are unrooted except one. Visual Studio reports the rooted instance is referenced by the static variable NtProcessInfoHelper....
Inako's user avatar
  • 422
0 votes
1 answer
107 views

I am trying to debug a .Net memory dump taken from an Ubuntu system in WinDbg. When I try to load the dump I get the following errors: Module name Error libc.so The system ...
Steve's user avatar
  • 9,635
0 votes
1 answer
108 views

I am trying to analyze a memory dump obtained with dotnet-dump from a Ubuntu container in WinDbg to find an unmanaged memory leak. I have been able to load the dump, but whenever I try to run !heap -s,...
Steve's user avatar
  • 9,635
0 votes
0 answers
324 views

I am following a very basic tutorial on WinDBG (windbg tutorial ytb [not guaranteed broken link in the future]). Is being quite a nightmare, at least from my knowledge base. My context is Windows 11....
nostromo's user avatar
  • 487
0 votes
0 answers
150 views

I just setup this WinDbg debugging configuration yesterday and I'm getting a fatal error of memory corruption. The target machine is VMWare Workstation 17.5.x over a COM port named pipes. Secure boot ...
blogger13's user avatar
  • 363
0 votes
1 answer
133 views

I am running WinDbg on my development Win10 machine and connecting via pipe to my Win10 VM. WinDbg is definitely talking to my VM and indicates as such with "Debuggee is running". If I break ...
Sarah Weinberger's user avatar
  • 15.8k
0 votes
0 answers
42 views

I generated Default KMD for ARM64 In Visual Studio on my Windows 10 64. Just to get remote debugger working. Built for test signing. I Previsioned the Target Arm64 System. I Can run Windbg in Kernal ...
Guy Winslow's user avatar
  • 1
0 votes
0 answers
43 views

I am analyzing a .NET dump taken from a remote machine and analyzing it in a development machine. I have loaded the correct versions of the SOS.dll and mscordacwks.dll, the same as the clr.dll ...
Morfhine's user avatar
  • 23
-1 votes
1 answer
66 views

We have an internal test automation tool that runs tests on VMs. For each test: -A new process is spawned. -After execution, it ends with sys.exit(return_code) to trigger the next test. Recently, I ...
Kanishka's user avatar
  • 1
1 vote
1 answer
174 views

When running the !pcr command in Windbg, the NT_TIB structure shows zeros for StackBase and StackLimit. I am debugging drivers on Windows 7 x32 Ultimate using Windbg via COM port. OS is running on ...
Labmem_015's user avatar
  • 11
1 vote
1 answer
113 views

I am trying to debug a .NET 8 application. I loaded the SOS extension .load C:\Users\<username>\.dotnet\tools\.store\dotnet-sos\9.0.621003\dotnet-sos\9.0.621003\tools\net8.0\any\win-x64\sos.dll ...
Thomas W.'s user avatar
  • 61.3k
0 votes
1 answer
81 views

I have an array of structs stores as pointer + length and would like to print a deep field of each. I can do it using .for and temporary registers: .for (r $t0 = 0; @$t0 < @@c++(length); r $t0 = @$...
Dominik Kaszewski's user avatar
  • 3,331

15 30 50 per page
1
2 3 4 5
199