Author Topic: Time travel debugging - It’s a blast! (from the past)  (Read 376 times)

LiaoMi

  • Member
  • ****
  • Posts: 593
Time travel debugging - It’s a blast! (from the past)
« on: June 07, 2019, 04:21:15 AM »
Hi,

maybe a new Windbg with a new design will be more popular, with a new interesting ability to record the execution of functions ...



The Microsoft Security Response Center (MSRC) works to assess vulnerabilities that are externally reported to us as quickly as possible, but time can be lost if we have to confirm details of the repro steps or environment with the researcher to reproduce the vulnerability. Microsoft has made our “Time Travel Debugging” (TTD) tool publicly available to make it easy for security researchers to provide full repro, shortening investigations and potentially contributing to higher bounties (see “Report quality definitions for Microsoft’s Bug Bounty programs”). We use it internally, too—it has allowed us to find root cause for complex software issues in half the time it would take with a regular debugger.
https://blogs.technet.microsoft.com/srd/2019/05/29/time-travel-debugging-its-a-blast-from-the-past/


To download the program without Microsoft Store you need to enter the address of the application on this site "store dot rg-adguard dot net", the link itself can be taken on the official page https://www.microsoft.com/en-us/p/windbg-preview/9pgjgd53tn86?activetab=pivot:overviewtab or you can find it in the article.

Latest version
2019-06-06 18:39:02 GMT   0d45028215bf7acbf7d7fed905a6cb48ff4c7228   44.81 MB

After downloading just unzip using 7zip or you can install using the technique "Developer-Mode"  :eusa_clap:



I wish you all a successful debugging  :biggrin:

AW

  • Member
  • *****
  • Posts: 2435
  • Let's Make ASM Great Again!
Re: Time travel debugging - It’s a blast! (from the past)
« Reply #1 on: June 07, 2019, 11:39:49 PM »
Windows store apps, usually suck. This one is no exception.  :badgrin:
Incidentally, it is not able to debug mixed win32/win64 like the traditional WinDbg can.

TimoVJL

  • Member
  • ***
  • Posts: 476
Re: Time travel debugging - It’s a blast! (from the past)
« Reply #2 on: June 07, 2019, 11:57:37 PM »
c#/vb.net is a good wrapper language for OS API.
Real professionals don't need those toys, they just use asm, C, C++  :undecided:

May the source be with you