5
Contents
Preface ............................................................................................................................. 23
Acknowledgements.......................................................................................................... 25
PART 1: Professional Crash Dump Analysis and Debugging ............................................. 27
WinDbg Shortcuts ....................................................................................................... 27
.ecxr ......................................................................................................................... 27
!heap -x -v ............................................................................................................... 29
!sw and !k ................................................................................................................ 31
Two WinDbg Scripts That Changed the World ............................................................ 32
Raw Stack Dump of All Threads (Kernel Space) .......................................................... 37
The Design of Memory Dump Analysis: 7 Steps of Highly Successful Analysts ........... 38
Postmortem Effects of -g ............................................................................................ 39
Event Owners .............................................................................................................. 42
Improbable Occurrence .............................................................................................. 48
Pattern Cooperation ................................................................................................... 49
Page Heap Implementation ........................................................................................ 54
More Common Mistakes in Memory Analysis ............................................................ 60
Memory Dump Analysis Best Practices ....................................................................... 63
PART 2: Crash Dump Analysis Patterns ............................................................................ 65
FPU Exception ............................................................................................................. 65
评论0