In windbg, How to set a breakpoint for all functions in kernel32.dll?

Question

In windbg, How to set a breakpoint for all functions in kernel32.dll?

I want to find out the sequence of calls and functions for kernel32.dll in function example()in example.DLL.

In windbg, how to set a breakpoint for all functions in kernel32.dll?

I tried bm kernel32!*but it doesn't seem to work.

+3

c ++ windbg

whunmr Dec 04 '09 at 17:31

source share

3 answers

DLL- .

API rohitab, DLL, .

+4

Houcheng 19 . '13 9:07

Kernel32 - DLL - , , , . kernel32, , .

, "link/dump/exports kernel32.dll", , script, "bp kernel32!" + . windbg.

There is probably an easy way to do this with scripting support in debuggers, but you could hack the above script together in less time spent learning how to do this using debugger scripts.

+2

Michael Dec 04 '09 at 18:06

source share

deemok · Accepted Answer · 2009-12-04T20:03:48+0000

I would not say that. Of course, this is possible, but if it is done using bm /a kernel32!*, you inadvertently set bps on data characters as well (as opposed to actual functions). In your case wt, the trace and view data (you can find it in debugger.chm that comes with your windbg package), maybe this is what you need.

In windbg, How to set a breakpoint for all functions in kernel32.dll?

More articles: