Windbg+virtualbox Dual-Machine Debug Environment configuration (XP/WIN7/WIN10)

First, download WDK10

Https://developer.microsoft.com/zh-cn/windows/hardware/windows-driver-kit

Install the Windows Driver Toolkit (WDK) 10

Here can be installed directly, you can also download the installation package, I choose to download, select the path, next.

After downloading, we install the WDK.

Once installed, WinDbg is in the C:\Program Files (x86) \ Windows Kits\10\debuggers\x64 Directory

Second, configure WIN10 virtual machine debugging

1. Turn off the firewall
Windows Firewall--"system and Security", "Control Panel", "Shut down Windows Firewall"--Start or shut down Windows Firewall

2. The target computer allows kernel debugging
Administrator rights allow CMD

Shut down the virtual machine after Setup is complete

3. Set up a Windows 10 virtual machine, set up a pipe serial port connected to the WinDbg

4. Set up serial debugging on the test target computer in the virtual machine
Administrator rights to open cmd

Which debugport:1, indicating the choice of serial port COM1
Then restart the operating system, open the CMD Command window on the target computer
Enter the following command to view the information you have just configured

5. Open the WinDbg location in the host, typically in the C:\Program Files (x86) \ Windows Kits\10\debuggers\x64 Directory, create a shortcut on the desktop
Target: "C:\Program Files (x86) \ Windows Kits\10\debuggers\x64\windbg.exe"-y srv*f:\study\symbol\symbols_win10_x64*http ://msdl.microsoft.com/download/symbols-b-K Com:pipe,port=\\.\pipe\com_1,baud=115200,pipe

Where F:\Study\Symbol\Symbols_Win10_X64 is the native symbol table path, the symbol table is downloaded to the local URL as Https://developer.microsoft.com/en-us/windows/hardware /download-symbols
Or go to the WinDbg directory and open WinDbg

You can debug the Windows 10 kernel.

Third, configure Win7 virtual machine debugging

1. Copy the current configuration;
bcdedit/copy {current}/d "Windows 7 Debug"
2. Add the debug function to the newly added startup item;
Bcdedit/debug {previously queried identifier GUID} on
3. Modify the debugging settings;
Bcdedit/dbgsettings SERIAL Debugport:2 baudrate:115200

2 of them correspond to VirtualBox's COM2.

4. The outer system, add a windbg shortcut, modify its command behavior (note that the installation path needs to correspond to your native computer).

Set the target of the WinDbg shortcut to
"C:\Program Files (x86) \ Windows Kits\10\debuggers\x64\windbg.exe"-y srv*f:\study\symbol\symbols_win7_x64*http:// Msdl.microsoft.com/download/symbols-b-K Com:pipe,port=\\.\pipe\com_2,baud=115200,pipe

Remember: Cmd.exe must use Administrator privileges to run the line, the other settings and Debugging XP system is the same!

Four, configure the Win XP virtual machine debugging

directly modify the boot. ini file under C drive to increase the debug startup mode

Where DEBUGPORT=COM4 is the serial port set for VirtualBox COM4

Change the shortcut target for WinDbg to:

"C:\Program Files (x86) \ Windows Kits\10\debuggers\x64\windbg.exe"-y srv*f:\study\symbol\symbols_xp3_x86*http:// Msdl.microsoft.com/download/symbols-b-K Com:pipe,port=\\.\pipe\com_4,baud=115200,pipe

Windbg+virtualbox Dual-Machine Debug Environment configuration (XP/WIN7/WIN10)