Extended Windows Memory Dump Analysis: Using and Writing WinDbg Extensions, Database and Event Stream Processing, Visualization

Windows Internals

by Dmitry Vostokov, Software Diagnostics Services

The book contains the full transcript of Software Diagnostics Services training with 16 hands-on exercises. This training course extends pattern-oriented analysis introduced in Accelerated Windows Memory Dump Analysis, Accelerated .NET Core Memory Dump Analysis, and Advanced Windows Memory Dump Analysis with Data Structures courses the current landscape of WinDbg extensions with analysis pattern mappingsWriting WinDbg extensions in C and C++Connecting WinDbg to NoSQL databasesConnecting WinDbg to streaming and log processing platformsQuerying and visualizing WinDbg output data
Working knowledge of WinDbg. Working knowledge of C or C++ is optional (required only for some exercises). Other concepts are explained when necessary.

Software developers, software maintenance engineers, escalation engineers, quality assurance engineers, security and vulnerability researchers, malware and memory forensics analysts who want to build memory analysis pipelines.

Kindle Edition

Published December 19, 2022