Re: Initiation of a Debugger using CreateProcess
- From: "Arkady Frenkel" <arkadyf@xxxxxxxxxxxxxxxx>
- Date: Sat, 25 Jun 2005 15:52:51 +0200
As good example look at CrashFinder from
http://www.amazon.com/exec/obidos/tg/detail/-/0735615365/qid=1119704031/sr=8-4/ref=pd_bbs_ur_4/002-0051188-5920051?v=glance&s=books&n=507846
As for SoftIce it change IDT table and that the only way to treat ( debug )
interrupts in the same computer.
WinDbg from MSFT demand to use host/target pair instead.
You'll find description of all debuggers in book I mention
Arkady
"Jacky Luk" <jl@xxxxxxxxxx> wrote in message
news:O8Mzv5VeFHA.1040@xxxxxxxxxxxxxxxxxxxxxxx
> Hi,
> I'm intending to write a private debugger for my own use, but it must be
> started with CreateProcess, how can I retrieve and control its "context"
> such as the base address loaded by the Windows Loader? Is it possible to
> disassemble the exe in this way? Also, how can I implement the feature of
> VB6 debugger (called JIT?)such that I can control the context outside the
> debugger when the debugger is waiting on an event? (so that I can switch
> to other programs) I have encountered this problem when using Softice...
> For example, when Softice is "doing" something, other processes are
> freezed and you jump out of it (Ctrl-D) and come back later, (because of
> its sticky feature), the current address of the debuggee would have
> changed, and it is looking at something else than what I was doing
> before.... quite subtle, hope you understand...
> Thanks
> Jack
>
.
- References:
- Initiation of a Debugger using CreateProcess
- From: Jacky Luk
- Initiation of a Debugger using CreateProcess
- Prev by Date: Re: Initiation of a Debugger using CreateProcess
- Next by Date: Re: Initiation of a Debugger using CreateProcess
- Previous by thread: Re: Initiation of a Debugger using CreateProcess
- Index(es):
Relevant Pages
|
