Appendix A. Useful SoftICE Commands and Breakpoints
SoftICE Commands
Table A-1. Basic SoftICE commands
Command | Meaning |
|---|---|
? | Evaluate expression |
A | Assemble code |
ADDR | Display/change address contents |
BC | Clear breakpoint |
BD | Disable breakpoint |
BE | Enable breakpoint |
BL | List current breakpoints |
BPE | Edit breakpoint |
BPT | Use breakpoint as a template |
BPM, BPMB, BPMW, BPMD | Breakpoint on memory access |
BPR | Breakpoint on memory range |
BPIO | Breakpoint on I/O port access |
BPINT | Breakpoint on interrupt |
BPX | Breakpoint on execution |
BPMSG | Breakpoint on Windows message |
C | Compare two data blocks |
CLASS | Display window class information |
D, DB, DW, DD, DS, DL, DT | Display memory |
DATA | Change data window |
E, EB, EW, ED, EL, ET | Edit memory |
EXIT | Exit |
F | Fill memory with data |
FORMAT | Change format of data window |
G | Go to address |
H | Help on specific function |
HBOOT | System boot (total reset) |
HERE | Go to current cursor line |
HWND | Display Windows handle information |
M | Move data |
MOD | Display Windows module list |
P | Step-skipping calls, interrupts, etc. |
R | Display/change register contents |
S | Search for data |
T | Single-step one instruction |
TASK | Display Windows task list |
THREAD | Display thread information |
U | Un-Assemblers instructions |
VER | SoftICE Version |
WATCH | Add watch |
WHAT | Identify the type of expression |
WMSG | Display Windows messages |
X | Return to host debugger or program |
Table A-2. Advanced SoftICE commands
Command | Meaning |
|---|---|
CPU | Display CPU register information |
GDT | Display global descriptor table |
GENINT | Generate an interrupt |
HEAP | Display Windows global heap |
LHEAP | Display Windows local heap |
IDT | Display interrupt descriptor table |
I, IB, IW, ID | Input ... |
Get Security Warrior now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
