Results 1 to 3 of 3

Thread: Windbg HWND Extension x64

Threaded View

  1. #1

    Windbg HWND Extension x64

    EDIT: Posts moved from another thread into a new topic

    Have you come across an extension in your travels that works on x64 and allows a hwnd and a windows message code to be use in a breakpoint?

    I am thinking of the bmsg command in sice and I have seen at least two extensions with a similar function. Unfortunately neither work on my present x64 system.

    ps. I'm sure it could be done manually using an .if/.else statement with a bp. I am still trying to get my head around poi.

    I am thinking specifically of this statement I posted earlier:

    .load sdbgext
    bp @eip ".if (poi(poi(esp+4)+4) == 0x202) {!hwnd poi(poi(esp+4));gc } .else {gc}"
    g
    Unfortunately I need the extension sdbgext which I have been unable to load on x64.

    This is a new release that's supposed to work on x64 but ironically not on my system.

    http://www.nynaeve.net/?p=94
    Last edited by WaxfordSqueers; May 29th, 2019 at 15:46.

Similar Threads

  1. Fun facts: Windows kernel and Device Extension Size
    By j00ru vx tech blog in forum Blogs Forum
    Replies: 0
    Last Post: October 21st, 2012, 11:18
  2. Shell Extension for olly
    By p0lly in forum The Newbie Forum
    Replies: 7
    Last Post: January 19th, 2009, 23:36
  3. [ARTeam] QuickUnpack CFF Explorer Extension v.10, by Shub-Nigurrath
    By Shub-nigurrath in forum Tools of Our Trade (TOT) Messageboard
    Replies: 1
    Last Post: January 24th, 2008, 06:48
  4. HWND error message
    By Wizard in forum Advanced Reversing and Programming
    Replies: 4
    Last Post: June 26th, 2001, 03:20
  5. HWND error message
    By Wizard in forum Malware Analysis and Unpacking Forum
    Replies: 0
    Last Post: June 13th, 2001, 07:23

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •