2 posts in tag WinDbg

Fine-tuned Windows scenarios: debugger-assisted recording with WinDbg

16 Jun 2022 by Mathieu - Tutorial - Reverse Engineering REVEN Scenario recording WinDbg VMI Malware

In this article we present a new way to leverage WinDbg to interactively control the VM during the recording of a scenario: this enables the user to more intuitively get to the point of interest and check conditions to control the execution, resulting in a more precise recording. You can...

Timeless Full-System analysis with REVEN and WinDbg

03 Sep 2020 by Louis - Tutorial - Reverse Engineering REVEN WinDbg

REVEN 2.5 introduced a new integration between REVEN and Microsoft WinDbg. This integration brings WinDbg and REVEN closer together, allowing you to access a REVEN trace as if it were a live VM and benefit from REVEN’s full-system timeless analysis and full-fledged scripting API, together with WinDbg’s familiar debugger interface....