search

zhouat / win_dbg

0 stars 0 forks source link

test #1

Open zhouat opened 6 years ago

zhouat commented 6 years ago 
C:\Program Files\Windows Kits\10\Debuggers\x86>gflags.exe -I WINWORD.EXE -ust -hpa
gflags.exe -I WINWORD.EXE 
 -ust -hpa 
 +ust +hpa
zhouat commented 6 years ago

!heap -p -a 05e10ff0

zhouat commented 6 years ago

pykd https://labs.mwrinfosecurity.com/blog/heap-tracing-with-windbg-and-python/