Engine for communication with remote kernel debugger (KD, WinDbg) from drivers and applications
Switch branches/tags
Nothing to show
Clone or download
Latest commit 8195939 Jun 8, 2013
Permalink
Failed to load latest commit information.
_Examples Recommit Jun 8, 2013
common Recommit Jun 8, 2013
dbgcb Recommit Jun 8, 2013
README.TXT Recommit Jun 8, 2013
build_ext.bat Recommit Jun 8, 2013
dbgcb.dll Initial commit Nov 12, 2011
dbgcb.pdb Initial commit Nov 12, 2011
dbgcb_in_work.png Initial commit Nov 12, 2011
dbgcb_scheme.png Docs update Nov 14, 2011
dbgcb_x64.dll Initial commit Nov 12, 2011
dbgcb_x64.pdb Initial commit Nov 12, 2011
dirs Recommit Jun 8, 2013

README.TXT


  DBGCB Engine
    
  by Oleksiuk Dmytro (aka Cr4sh), Esage Lab

  http://d-olex.blogspot.com/
  mailto:dmitry@esagelab.com

================================= 

Engine for communication with remote kernel debugger (WinDBG, KD) from drivers or user mode application.
 
./dbgcb.dll - WinDbg extension, that must be loaded in remote kernel debugger
./common/ - dbgcb client code (can be used in your own applications)
./_Examples/dbgcb_drv.sys - Sample driver
./_Examples/dbgcb_app.exe - Sample user mode application

Engine working scheme: ./dbgcb_scheme.png
Engine with test driver (dbgcb_drv.sys): ./dbgcb_in_work.png


  Currently supported functions (see ./common/dbgcb_api.h):
  
/**
 * Execute debuuger command (IDebugControl::Execute()).
 */
BOOLEAN dbg_exec(PCHAR lpFormat, ...);

/**
 * Evaluate debuuger expression (IDebugControl::Evaluate()).
 */
PVOID dbg_eval(PCHAR lpFormat, ...);

/**
 * Get offset of the some structure field
 */
LONG dbg_field_offset(PCHAR lpFormat, ...);