Monthly Archives: July 2014

Windows Integrity Levels – Process Explorer and WinDbg

From Windows Vista onwards, Microsoft has placed a substantially greater focus on the security of the operating system, which is one of the areas most users will neglect and then later come to complain about. In this article I’m going … Continue reading

Posted in Debugging, System Security, Windows Internals | 1 Comment

Discrete Geometry – Bin Packing Problem

This post is a little irrelevant to general contents of my blog, but I found this to be a interesting geometry problem and it does have some ties with Computational Geometry, which is form a of theoretical computer science. There … Continue reading

Posted in Computer Science, Discrete Geometry, Theoretical Computer Science | Leave a comment

WinDbg Power Policy Extensions – !podev, !popolicy, !poreqlist, !pocaps, !poaction

The !podev, !poreqlist and !poaction aren’t documented within WinDbg for some reason, but there is a person which has written about them thankfully. These extensions are a must for Stop 0x0A and debugging any issues related to power like Stop … Continue reading

Posted in Debugging, Stop 0x0A, Stop 0x9F, WinDbg | Leave a comment

Mathematics for Theorectical Computer Science

I thought I would create a list of Maths topics which were relevant for those who are wishing to study Computer Science. I’ve seen most people on online communities referring to topics which have very little relevance or completely pointless … Continue reading

Posted in Computer Science, Miscellaneous, Theoretical Computer Science | Leave a comment

WinDbg Extensions – !tz and !tzinfo

When I was writing up my WinDbg cheat sheet, I managed to stumble upon the !tz and !tzinfo extensions in the WinDbg Help documentation. The extensions seem to be solemnly documented directly by Microsoft, but using the ACPI documentation is … Continue reading

Posted in Debugging, WinDbg, Windows Internals | Leave a comment

Using !kuser to find _KUSER_SHARED_DATA

The _KUSER_SHARED_DATA structure contains some interesting information related to the currently logged on user, we can obtain the address of this data structure by using the !kuser extension in WinDbg. Most of the fields aren’t officially documented from what I … Continue reading

Posted in Debugging, WinDbg, Windows Internals | 1 Comment