bsod offset search tool (bos) version 1.0.0.1 released

Some time ago I was writing a post about how to find a cause of bsod without having a memory dump file. I decided to implement a tool for myself which is automating these steps. If you by any chance require such a tool, it is available for download for free. All you have to …

Continue reading ‘bsod offset search tool (bos) version 1.0.0.1 released’ »

Modifying EIP in WinDbg on fly in order to test different branches of code

Sometimes during debugging it happens that you just got some function failed and you want to re-try it again. After this function fails you might have a BSOD, for example, ntRetVal = FileOpen(&hFile, szPath); if (!NT_SUCCESS(ntRetVal)) { #ifdef DBG KeBugCheckEx(0x0, 0, 0, 0, id_of_the_problem); #endif } Now, as you can see in above code it …

Continue reading ‘Modifying EIP in WinDbg on fly in order to test different branches of code’ »