Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kernel Debugging Using Network on Physical Machine.

Published byBritta Lundqvist Modified over 5 years ago

Similar presentations

Presentation on theme: "Kernel Debugging Using Network on Physical Machine."— Presentation transcript:

1 Kernel Debugging Using Network on Physical Machine.
By Anand George

2 Why we need this setup while we have virtual machine?
Virtual Machine kernel debugging is for sure convenient easy and a game changer. But it has many limitations. Most of them are para virtualized which means if you go for some very low level investigation things wont work out as you expect. I personally wont recommend do any lowest level debugging experiments with VMs. Very hardware specific commands like for instance ba ( break on access ) rarely works right with any VMs.

3 Via Network Fairly new at the time of this presentation.
Make sure you debugger is latest at least windows 8 or 8.1 SDK/WDK I recommend. Make sure your target is Windows 8 or later. MS says host should be Win xp or later. This can open a great number of production kernel debugging opportunities which use to be a night mare with older ports ( USB,serial,1394 etc) I will be using this setting a lot in coming presentations.

4 Steps Make sure you have all the latest debugger and OS as per previous slide. Make sure your target OS’ NIC is in the list of “Supported Ethernet NICs for Network Kernel Debugging in Windows 8.1.” in msdn. Get the IP of host using ipconfig command. Get select a port number between to 65535

5 Steps (cont) 5. Connect host and target via a router or switch.
In my set up I have connected “GreenDog” ( host ) and “violetcat” (target) which is win 8.1 via 2 network cables connected to a TP Link router. Although the router is wireless I have used the wired ports. This wont work on wireless so far. VioletCat’s Nic is Qualcomm Atheros AR8132 PCI-E Fast Ethernet Controller (NDIS 6.30) Nic is sitting on the position - PCI bus 3, device 0, function 0 I would recommend remove additional NICs if you have more than one NIC on the target to avoid complications.

6 Steps (cont) 6. Disable all kind of firewalls on both endpoints.
7. Get on to target and type following command in Elevated prompt, bcdedit /debug on bcdedit /dbgsettings net hostip:w.x.y.z port:n 8. You will get a key which you need to save and transfer it to Host. 9. Reboot target 10.On the host computer, open WinDbg. On the File menu, choose Kernel Debug. In the Kernel Debugging dialog box, open the Net tab. Enter your port number and key ( we got at step 8 ). Click OK.

7 Demo

8 TroubleShooting Make sure you have following all the step with out any single failure. Get wire shark on the Host and look for periodic UDP ping packets from target. Demo.

9 Summary KD of physical machine is recommended over VMs.
Very convenient with new Network cable method. Two additional information we have discussed which is not there in msdn.

10 Thank you

Download ppt "Kernel Debugging Using Network on Physical Machine."

Similar presentations

Wireless Networking. Wireless Standards 802.11a 802.11b 802.11g 802.11n.

Wireless Networking. Wireless Standards a b g n.
®® Microsoft Windows 7 Windows Tutorial 8 Connecting to Networks with Mobile Computing.

®® Microsoft Windows 7 Windows Tutorial 8 Connecting to Networks with Mobile Computing.
Ver AB07-1 1 Terms Host: The computer to be tested Gateway: The router connected to that part of the network PDU: Protocol Data Unit Perform Network Fault.

Ver AB Terms Host: The computer to be tested Gateway: The router connected to that part of the network PDU: Protocol Data Unit Perform Network Fault.
DSL-2870B How to Change ADSL Username and Password in your modem router How to Change Wireless Channel in your modem router How to Open Ports in your modem.

DSL-2870B How to Change ADSL Username and Password in your modem router How to Change Wireless Channel in your modem router How to Open Ports in your modem.
Hands On: Configuring Windows XP Home for Networking Chapter 1b Panko’s Business Data Networks and Telecommunications, 6 th edition Copyright 2007 Prentice-Hall.

Hands On: Configuring Windows XP Home for Networking Chapter 1b Panko’s Business Data Networks and Telecommunications, 6 th edition Copyright 2007 Prentice-Hall.
Windows XP Home Networking. 2 Windows XP The dominant client operating system from Microsoft today Strong security features make it a wise upgrade for.

Windows XP Home Networking. 2 Windows XP The dominant client operating system from Microsoft today Strong security features make it a wise upgrade for.
SYSTEM ADMINISTRATION Chapter 19

SYSTEM ADMINISTRATION Chapter 19
Basic Network Concepts And Troubleshooting. A Simple Computer Network for File Sharing.

Basic Network Concepts And Troubleshooting. A Simple Computer Network for File Sharing.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 13: Troubleshoot TCP/IP.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 13: Troubleshoot TCP/IP.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.
Panasonic Computer Products Europe CF-08 Live Set up.

Panasonic Computer Products Europe CF-08 Live Set up.
DHP-306AV & DHP-W306AV. Agenda: How to change Encryption on a DHP-306AV How to change the Device Password on a DHP-306AV What will happen if the Device.

DHP-306AV & DHP-W306AV. Agenda: How to change Encryption on a DHP-306AV How to change the Device Password on a DHP-306AV What will happen if the Device.
Designing a Home Network By Tabby Booth. Network Components Motorola Cable Modem Wireless 4 port Linksys Router Compaq Desktop Computer – NIC card HP.

Designing a Home Network By Tabby Booth. Network Components Motorola Cable Modem Wireless 4 port Linksys Router Compaq Desktop Computer – NIC card HP.
 All of you should be able to describe how a network works.  Most of you will be able to identify the main devices necessary for a network.  Some of.

 All of you should be able to describe how a network works.  Most of you will be able to identify the main devices necessary for a network.  Some of.
File sharing. Connect the two win 7 systems with LAN card Open the network.

File sharing. Connect the two win 7 systems with LAN card Open the network.
TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.

TCP/IP Tools Lesson 5. Objectives Skills/ConceptsObjective Domain Description Objective Domain Number Using basic TCP/IP commands Understanding TCP/IP3.6.
Dainis Krakops’ Wireless Network MOTOROLA SURFboard SB5101 CABLE MODEM Enables cable operators to provide broadband Internet connection for my LAN devices.

Dainis Krakops’ Wireless Network MOTOROLA SURFboard SB5101 CABLE MODEM Enables cable operators to provide broadband Internet connection for my LAN devices.
Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.

Firewalls CS158B Don Tran. What is a Firewall? A firewall can be a program or a device that controls access to a network.
TAX-AIDE Network Router Setup Network Printer Setups July 2013 2013 SMT/TCS Training - Dallas1.

TAX-AIDE Network Router Setup Network Printer Setups July SMT/TCS Training - Dallas1.
Networking Feb. 6, 2008 by Larry Finger. Networking Hardware Glossary RJ45 – Official name for 8-pin connector Cat 5, 5E or 6 - Cable suitable for “high”-speed.

Networking Feb. 6, 2008 by Larry Finger. Networking Hardware Glossary RJ45 – Official name for 8-pin connector Cat 5, 5E or 6 - Cable suitable for “high”-speed.

Similar presentations

Ads by Google