Want to Join Us ?

you'll be able to discuss, share and send private messages.

Tips (TIP of the Day)(IDA PRO)Automate Symbols in windbg debugger.

Discussion in 'Tips & Tricks' started by storm shadow, Mar 7, 2015.

Share This Page

  1. storm shadow

    Techbliss Owner Admin Ida Pro Expert Developer

    When setting the online symbol server in inviromental setting. Ida will look online, onces attached to process, and retrieve any symbols it can, for the current process.

    Setting the _NT_SYMBOL_PATH environment variable
    The common Microsoft debugging tools use the SymSrv technology if you provide the correct symsrv syntax in the _NT_SYMBOL_PATH environment variable. These tools automatically include whatever you provide in the variable as the symbol path.
    You can set this variable as a system variable or as a user environment variable. To do this from the desktop, right-click My Computer, and then click Properties. On the Advanced tab, click Environment Variables.


    Code (Text):
    Set _NT_SYMBOL_PATH = symsrv*symsrv.dll*f:\localsymbols*http://msdl.microsoft.com/download/symbols


    [​IMG]

    loads all it can

    [​IMG]

    you can check when debugging in WINDBG shell command to check symbol server path.

    Code (Text):
    WINDBG>.sympath
    Symbol search path is: C:\Users\****\Downloads;symsrv*symsrv.dll*f:\localsymbols*http://msdl.microsoft.com/download/symbols
    Expanded Symbol search path is: c:\users\****downloads;symsrv*symsrv.dll*f:\localsymbols*http://msdl.microsoft.com/download/symbols
     
    ************* Symbol Path validation summary **************
    Response                         Time (ms)   Location
    OK                             15           C:\Users\****\Downloads
    Deferred                                       symsrv*symsrv.dll*f:\localsymbols*http://msdl.microsoft.com/download/symbols
    Offcause this works with any engine using windbg.
     
    Accezz and Rip Cord like this.
Top