Nifty small script for debugging memory dumps


Nifty small script for debugging memory dumps

In my last blog I wrote about some command that make it easier to debug a memory dump file. Well after finishing the blog I thought let’s put together a script that does that.
The commands haven’t changed but because we open KD to do the processing of commands we need to pipe them to KD.
For you who haven’t read my previous blog, it’s about Microsoft Windbg and debugging memory dumps.
So the batch file you should create to do automatic dump analysis is.
CD /d “C:Program Files (x86)Windows Kits8.1Debuggersx64”

echo>> kd.scr .logopen c:tempdebuglog.txt
echo>> kd.scr .sympath srv*c:symbols*http://msdl.microsoft.com/download/symbols
echo>> kd.scr .reload;!analyze -v;r;kv;lmnt;.logclose;q
kd -z c:tempmemory.dmp < kd.scr
It’s a pretty simple script and all you need to make sure of is that you add the memory.dmp to the temp folder and that you have Windbg installed of course.
Just a simple addition to the previous blog, hope this helps.

Leave a Reply

https://tracking.cirrusinsight.com/869c29e2-3a9b-48c5-9232-0b95e7993ae8/controlup-com-pixel-php