10.windbg-r
来源:互联网 发布:php获取js变量 编辑:程序博客网 时间:2024/05/21 13:57
r
r 命令显示或修改寄存器、浮点寄存器、标志位、伪寄存器和预定义别名。
0:000> r ///<直接用r,会显示当前线程的寄存器状态eax=00000000 ebx=00000000 ecx=a5cd0000 edx=0011e128 esi=fffffffe edi=00000000eip=77e7129b esp=0022f740 ebp=0022f76c iopl=0 nv up ei pl zr na pe nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000246
0:002> ~0s ///< 切换到0号线程eax=00000000 ebx=003bf8ec ecx=00000006 edx=00000000 esi=00000003 edi=552a6740eip=76c07cb0 esp=003bf79c ebp=003bf824 iopl=0 nv up ei pl zr na pe nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000246kernel32!VDMConsoleOperation+0x1c8:76c07cb0 83c404 add esp,40:000> r ///<<span style="font-family: Arial, Helvetica, sans-serif;">直接用r,会显示当前线程的寄存器状态</span><span style="font-family: Arial, Helvetica, sans-serif;"> </span>eax=00000000 ebx=003bf8ec ecx=00000006 edx=00000000 esi=00000003 edi=552a6740eip=76c07cb0 esp=003bf79c ebp=003bf824 iopl=0 nv up ei pl zr na pe nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000246kernel32!VDMConsoleOperation+0x1c8:76c07cb0 83c404 add esp,40:000> ~0 r ///< 显示0号线程eax=00000000 ebx=003bf8ec ecx=00000006 edx=00000000 esi=00000003 edi=552a6740eip=76c07cb0 esp=003bf79c ebp=003bf824 iopl=0 nv up ei pl zr na pe nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000246kernel32!VDMConsoleOperation+0x1c8:76c07cb0 83c404 add esp,40:000> ~* r ///< 显示所有线程eax=00000000 ebx=003bf8ec ecx=00000006 edx=00000000 esi=00000003 edi=552a6740eip=76c07cb0 esp=003bf79c ebp=003bf824 iopl=0 nv up ei pl zr na pe nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000246kernel32!VDMConsoleOperation+0x1c8:76c07cb0 83c404 add esp,4eax=00000001 ebx=00000000 ecx=00000000 edx=01121028 esi=00000000 edi=006cfeb0eip=011213de esp=006cfde4 ebp=006cfeb0 iopl=0 nv up ei pl nz na po nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000202test1!ThreadProc+0x1e:011213de b801000000 mov eax,1eax=7efd7000 ebx=00000000 ecx=00000000 edx=77e6fb5a esi=00000000 edi=00000000eip=77de000c esp=0092fb8c ebp=0092fbb8 iopl=0 nv up ei pl zr na pe nccs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000244ntdll!DbgBreakPoint:77de000c cc int 3
0:000> ~0 r eax=0x123450:000> ~0 reax=00012345 ebx=003bf8ec ecx=00000006 edx=00000000 esi=00000003 edi=552a67400:000> ~0 r eaxeax=00012345
0:000> ~* r eax=0x111110:000> ~* r eaxeax=00011111eax=00011111eax=00011111
0x10显示MMX寄存器。
0:000> ~0 rM 10 mm0=0000000000000000 mm1=0000000000000000mm2=0000000000000000 mm3=0000000000000000mm4=0000000000000000 mm5=0000000000000000mm6=0000000000000000 mm7=0000000000000000
- 10.windbg-r
- windbg r eip=0xxxxxxxxx如何实现?
- WinDBG
- windbg
- WINDBG
- windbg
- WinDBG
- WinDbg
- WinDbg
- Windbg
- WinDBG
- WinDbg
- WinDBG
- windbg
- WinDbg
- windbg
- WinDbg
- WinDbg
- mount NFS
- Linux kernel内核中的atoi,itoa等函数 .
- 《设计模式解析》 第19章 Observer 模式 复习题
- SSH使用指南
- Oracle 时间差计算
- 10.windbg-r
- ios 简单的图片缩放方法
- 黑马程序员_GUI的学习日记
- [Android] setContentView和inflater区别以及findViewById和inflater的区别
- db2修改用户密码
- mysql乱码:字符集问题
- Java里面的Session 与 Cookie
- SSH Secure Shell Client登陆配置服务器mysql命令
- JQuery浮动DIV提示信息
