Winxp kernel driver debugging

Use vmware Create a xp virtual machine , Make sure you are Administrator user , open cmd,cd Get into C Packing list

And then execute notepad boot.ini, The content should be as follows

[boot loader] timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] multi(0)disk(0)rdisk(0)partition(1)\WINDOWS=“Microsoft Windows XP Professional” /noexecute=optin /fastdetect

Copy the contents of the last line , Then wrap and append to the end of the file , The contents of the edited file are as follows ：

[boot loader] timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] multi(0)disk(0)rdisk(0)partition(1)\WINDOWS=“Microsoft Windows XP Professional” /noexecute=optin /fastdetect multi(0)disk(0)rdisk(0)partition(1)\WINDOWS=“Microsoft Windows XP Professional” /noexecute=optin /fastdetect /debug /debugport=com1 /baudrate=115200

This will enable the debug mode , Restart the virtual machine , You will see the following boot options

http://tougao.jb51.net/uploadfile/20220622/1655878179101017.png

Use the keyboard arrow keys to select 【 Enable debugger 】 Press enter for the boot option

It's not over yet , Shut down the virtual machine first , Then add the hardware , Please check the video for specific operation ：

https://www.bilibili.com/video/BV1M34y1W7qX/

Notice the named pipes in the video above \.\pipe\com1 Medium com1 To go up with you boot.ini Medium

/debugport=com1

Agreement

Then use the following command in your physical machine to start windbg

“C:\Program Files (x86)\Windows Kits\10\Debuggers\x86\windbg.exe” -b -k com:port=\.\pipe\com1,baud=115200,pipe

If you don't windbg, Please refer to this article https://144.one/windows-kernel-debug.html Download and install

windbg After starting , Open your winxp virtual machine , choice 【 Enable debugger 】 Power on option power on

You can see , This side has been connected to winxp The virtual machine is disconnected

http://tougao.jb51.net/uploadfile/20220622/1655878719552872.png