- Multiple Exceptions (user mode)
- Multiple Exceptions (kernel mode)
- Dynamic Memory Corruption (process heap)
- Dynamic Memory Corruption (kernel pool)
- False Positive Dump
- Lateral Damage
- Optimized Code
- Invalid Pointer (general)
- NULL Pointer (code)
- Inconsistent Dump
- Hidden Exception
- Deadlock (critical sections)
- Deadlock (executive resources)
- Deadlock (mixed objects, user space)
- Deadlock (LPC)
- Deadlock (mixed objects, kernel space)
- Changed Environment
- Incorrect Stack Trace
- OMAP Code Optimization
- No Component Symbols
- Insufficient Memory (committed memory)
- Insufficient Memory (handle leak)
- Insufficient Memory (kernel pool)
- Insufficient Memory (PTE)
- Insufficient Memory (virtual memory)
- Insufficient Memory (physical memory)
- Spiking Thread
- Module Variety
- Stack Overflow (kernel mode)
- Stack Overflow (user mode)
- Managed Code Exception
- Truncated Dump
- Waiting Thread Time (kernel dumps)
- Waiting Thread Time (user dumps)
- Memory Leak (process heap)
- Memory Leak (.NET heap)
- Missing Thread
- Unknown Component
- Double Free (process heap)
- Double Free (kernel pool)
- Coincidental Symbolic Information
- Stack Trace
- Virtualized Process (WOW64)
- Stack Trace Collection
- Coupled Processes
- High Contention (executive resources)
- High Contention (critical sections)
- Accidental Lock
- Passive Thread (user space)
- Passive System Thread (kernel space)
- Main Thread
- Busy System
- Historical Information
- IRP Distribution Anomaly
- Local Buffer Overflow
- Early Crash Dump
- Hooked Functions
- Custom Exception Handler
- Special Stack Trace
- Manual Dump (kernel)
- Manual Dump (process)
- Wait Chain (general)
- Wait Chain (critical sections)
- Wait Chain (executive resources)
- Wait Chain (thread objects)
- Wait Chain (LPC)
- Corrupt Dump
- Dispatch Level Spin
- No Process Dumps
- No System Dumps
- Suspended Thread
- Special Process
- Frame Pointer Omission
- False Function Parameters
- Message Box
- Self-Dump
- Blocked Thread
- Zombie Processes
- Wild Pointer
- Wild Code
- Hardware Error
- Handle Limit (GDI)
- Missing Component (general)
- Missing Component (static linking, user mode)
- Execution Residue
- Optimized VM Layout
- Invalid Handle
- Overaged System
- Thread Starvation
- Duplicated Module
- Not My Version
- Data Contents Locality
- Nested Exceptions (unmanaged code)
- Nested Exceptions (managed code)
- Affine Thread
- Self-Diagnosis
- Inline Function Optimization
- Critical Section Corruption
- Lost Opportunity
- Young System
- Last Error Collection
- Hidden Module
- Data Alignment (page boundary)
- C++ Exception
- Divide by Zero (user mode)
Debugged! MZ/PE: MagaZine for/from Practicing Engineers
As one of the new initiatives for the Year of Debugging DumpAnalysis Portal starts publishing bimonthly full color 16 page periodical publication called:
Debugged! MZ/PE: MagaZine for/from Practicing Engineers
The only serial publication dedicated entirely to Windows® debugging
The first issue is planned for March, 2009 and has ISBN-13: 978-1-906717-38-4.
If you have an article idea or if you'd like to write an article for us please use the following contact form:
Books Coming Soon in Q1, 2009
Forthcoming Windows® memory analysis and debugging books in Q1, 2009:
- Computer Memory Visualization (ISBN: 978-1906717063)
- Windows® Debugging Notebook: Essential Concepts, WinDbg Commands and Tools (ISBN: 978-1906717001 and 978-0955832857)
- Crash Dump Analysis for System Administrators (ISBN: 978-1906717025)
- Windows® Debugging: Practical Foundations (ISBN: 978-1906717100)
- March issue of Debugged! MZ/PE: MagaZine for/from Practicing Engineers (ISBN: 978-1906717384)
- Reference Stack Traces: Windows Server® 2008 and Windows Vista™ (ISBN: 978-1906717230)
- WinDbg In Use: Debugging Exercises (Elementary and Intermediate Level) (ISBN: 978-1906717506)
Memory Analysis and Debugging Institute
DumpAnalysis.org jointly with OpenTask establishes Memory Analysis & Debugging Institute (MA&DI)
and appoints Dmitry Vostokov to the office of President.
Forthcoming Book WinDbg In Use: Debugging Exercises
Includes 60 programmed exercises from real life debugging and crash dump analysis scenarios and multiple-choice questions with full answers, comments and suggestions for further reading.
- Title: WinDbg In Use: Debugging Exercises (Elementary and Intermediate Level)
- Author: Dmitry Vostokov
- Publisher: Opentask (15 March 2009)
- Language: English
- Product Dimensions: 23.5 x 19.1
- ISBN-13: 978-1-906717-50-6
- Paperback: 200 pages
The Year of Debugging!
DumpAnalysis.org jointly with OpenTask publisher announces forthcoming 2009 as
2009 (0x7D9) - The Year of Debugging
DLL List Landscape: The Art from Computer Memory Space
The following direct links can be used to order the book now:
Buy from Amazon
Buy from Barnes & Noble
DLL is also a recursive acronym for DLL List Landscape. OpenTask is going to publish soon the new full color book featuring magnificent images from process user space generated by Dump2Picture:
- Title: DLL List Landscape: The Art from Computer Memory Space
- Author: Dmitry Vostokov
- Publisher: Opentask (15 December 2008)
- Language: English
- Product Dimensions: 21.6 x 21.6
- ISBN-13: 978-1-906717-36-0
- Paperback: 16 pages
Dumps, Bugs and Debugging Forensics
Finally Dr. Debugalov adventures are going to be imprinted with bugs inside. The full-color book also features never published before cartoons and a few surprises. It sets a new standard for entertainment in software engineering.
The following direct links can be used to order the book now:
Buy from Amazon
Buy from Barnes & Noble
- Title: Dumps, Bugs and Debugging Forensics: The Adventures of Dr. Debugalov
- Author: Narasimha Vedala
- Editor: Dmitry Vostokov
- Publisher: Opentask (1 December 2008)
- Language: English
- Product Dimensions: 21.6 x 14.0
- ISBN-13: 978-1-906717-25-4
- Paperback: 64 pages
WinDbg: A Reference Poster and Learning Cards
The following direct links can be used to order the book now:
Buy from Amazon
Buy from Barnes & Noble
WinDbg is a powerful debugger from Microsoft Debugging Tools for Windows. It has more than 350 commands that can be used in different debugging scenarios. The cover of this book is a poster featuring crash dump analysis checklist and common patterns seen in memory dumps and live debugging sessions. Inside the book you can find ready to cut learning cards with commands and their descriptions coloured according to their use for crash dump or live debugging sessions and user, kernel or complete memory dumps. Tossing cards can create unexpected connections between commands and help to learn them more quickly. Uncut pages can also serve as birds eye view to WinDbg debugging capabilities. More than 350 WinDbg commands including meta-commands and extensions are included.
- Title: WinDbg: A Reference Poster and Learning Cards
- Authors: Dmitry Vostokov
- Publisher: Opentask (20 November 2008)
- Language: English
- Product Dimensions: 28.0 x 21.6
- ISBN-13: 978-1-906717-29-2
- Paperback: 20 pages
CV as a Book
The following direct links can be used to order the book now:
Buy from Amazon
Buy from Barnes & Noble
A book can serve the role of CV but a CV can serve the role of a book. This is an old CV (1987 - 2003) from the founder of DumpAnalysis.org as an example of a person with CV-writing obsession.
- Title: Resume and CV: As a Book
- Author: Dmitry Vostokov
- Publisher: Opentask (01 December 2008)
- Language: English
- Product Dimensions: 28.0 x 21.6
- ISBN-13: 978-1-906717-34-6
- Paperback: 16 pages
Baby Turing
The perfect binary Christmas gift for your family and friends.
Buy Baby Turing
from Amazon
Buy Baby Turing from Barnes & Noble
The genius of Albert Einstein was revolutionary in understanding reality of hardware (semantics of nature) but the genius of Alan Turing was revolutionary in understanding virtuality of software (syntax of computation). This book fills the gap in children’s literature and introduces binary arithmetic to babies.
- Title: Baby Turing
- Authors: Alexandra Vostokova, Dmitry Vostokov
- Publisher: Opentask (01 November 2008)
- Language: English
- Product Dimensions: 21.6 x 21.6
- ISBN-13: 978-1-906717-26-1
- Paperback: 16 pages
Memory Dump Analysis Anthology, Volume 2
The following direct links can be used to order the book now:
Buy Paperback or Hardcover
from Amazon
Buy Paperback or Hardcover from Barnes & Noble
Buy Paperback or Hardcover or Digital from Lulu
This is a revised, edited, cross-referenced and thematically organized volume of selected DumpAnalysis.org blog posts about crash dump analysis and debugging written in January - September 2008 for software engineers developing and maintaining products on Windows platforms, quality assurance engineers testing software on Windows platforms and technical support and escalation engineers dealing with complex software issues. The second volume features:
- 45 new crash dump analysis patterns
- Pattern interaction and case studies
- Updated checklist
- Fully cross-referenced with Volume 1
- New appendixes
Product information is:
- Title: Memory Dump Analysis Anthology, Volume 2
- Author: Dmitry Vostokov
- Language: English
- Product Dimensions: 22.86 x 15.24
- Paperback: 470 pages
- Publisher: Opentask (03 Oct 2008)
- ISBN-13: 978-0-9558328-7-1
- Hardcover: 470 pages
- Publisher: Opentask (01 Nov 2008)
- ISBN-13: 978-1-906717-22-3
Back cover features visualized virtual process memory generated from a memory dump of colometric computer memory dating sample using Dump2Picture.
Forthcoming Book: Crash Dump Analysis for System Administrators
This is a must have book for system administrators of complex Windows server platforms and client workstations to understand and choose the best course of action to address system and application crashes, hangs, CPU spikes and memory leaks. It is also invaluable to general Windows users and technical support engineers.
- Title: Crash Dump Analysis for System Administrators (Windows Edition)
- Authors: Thomas Monahan, Dmitry Vostokov
- Publisher: Opentask (15 November 2008)
- Language: English
- Product Dimensions: 22.86 x 15.24
- ISBN-13: 978-1-906717-02-5
- Paperback: 180 pages
Forthcoming Windows® Debugging Notebook: Essential Concepts, WinDbg Commands and Tools
This is a forthcoming reference book for technical support and escalation engineers troubleshooting and debugging complex software issues. The book is also invaluable for software maintenance and development engineers debugging unmanaged, managed and native code.
- Title: Windows® Debugging Notebook: Essential Concepts, WinDbg Commands and Tools
- Authors: Roberto Alexis Farah, Dmitry Vostokov
- Language: English
- Product Dimensions: 22.86 x 15.24
- ISBN-13: 978-1-906717-00-1
- Publisher: Opentask (1 December 2008)
- Paperback: 256 pages
- ISBN-13: 978-0-9558328-5-7
- Publisher: Opentask (1 February 2009)
- Hardcover (Cloth): 256 pages
Draft Table of Contents
Draft Sample Chapter
Forthcoming Windows® Debugging: Practical Foundations
This is a forthcoming book to help technical support and escalation engineers, testers and software developers without the knowledge of assembly language and C to master all necessary prerequisites to understand and start debugging and crash dump analysis on Windows platforms. It doesn't require any specific knowledge, fills the gap and lowers the learning curve. Preliminary product details:
- Title: Windows® Debugging: Practical Foundations
- Author: Dmitry Vostokov
- Publisher: Opentask (01 December 2008)
- Language: English
- Product Dimensions: 22.86 x 15.24
- ISBN-13: 978-1-906717-10-0
- Paperback: 400 pages
Memory Dump Analysis Anthology, Volume 1
The following direct links can be used to order the book now:
Buy Paperback
or Hardcover
from Amazon
Buy Paperback or Hardcover from Barnes & Noble
Buy Paperback or Hardcover or Digital or Collector's Full-Color Hardcover from Lulu
This is a revised, edited, cross-referenced and thematically organized volume of selected DumpAnalysis.org blog posts about crash dump analysis and debugging written in 2006 - 2007 for software engineers developing and maintaining products on Windows platforms, quality assurance engineers testing software on Windows platforms, technical support and escalation engineers dealing with complex software issues and general Windows users.
- Title: Memory Dump Analysis Anthology, Volume 1
- Author: Dmitry Vostokov
- Publisher: OpenTask (15 Apr 2008)
- Language: English
- Product Dimensions: 22.86 x 15.24
- Paperback: 720 pages
- ISBN-13: 978-0-9558328-0-2
- Hardcover: 720 pages
- ISBN-13: 978-0-9558328-1-9
The back cover image is the picture of TestDefaultDebugger crash dump generated by Dump2Picture
Book reviews:
Caloni.com.br Blog (in Portuguese)
Amazon reviews
Testimonials:
"This book is very good to startup on debugging. It really starts from the basics and it keeps going more in depth. Easy to read and very didactic." - Yuri Diogenes, ISA Server Support Team, Microsoft (Link)
Also available:
- Title: Memory Dump Analysis Anthology Collector's Edition, Volume 1
- Hardcover (full-color): 720 pages
- ISBN-13: 978-1-9067-1701-8
DebugWare: The Art and Craft of Writing Troubleshooting and Debugging Tools
This is a forthcoming book about architecture, design and implementation of troubleshooting and debugging tools for software technical support. Preliminary information is:
- Authors: Kapildev Ramlal, Dmitry Vostokov
- Paperback: 256 pages
- ISBN-13: 978-0-9558328-3-3
- Publisher: Opentask (15 November 2008)
- Language: English
- Product Dimensions: 22.86 x 15.24
.png)
Concurrent Programming on Windows
Wed, 11/19/2008 - 17:59 — Dmitry Vostokov
Review:
Table of contents is amazing for its practical depth and breadth. If you want me to provide a review in a language of concurrency (I'm reading many books in parallel) I would simply say one word:
Priority!
It simply means priority reading for any Windows software developer and maintainer. Invaluable for any engineer debugging complex software problems and analyzing Windows crash dumps. Simply because Microsoft OS and CLR developers use all this concurrent stuff and best practices described in the book so it is vital to be able recognize them in memory dumps. After reading this book you also get priority boost in your understanding of process and thread dynamics and your ability to plan, architect, design and implement concurrent applications and services.
Memory Dump Analysis Anthology, Volume 2
Sat, 10/18/2008 - 19:11 — Dmitry Vostokov
Review:
This is a revised, edited, cross-referenced and thematically organized volume of selected DumpAnalysis.org blog posts about crash dump analysis and debugging written in January - September 2008 for software engineers developing and maintaining products on Windows platforms, quality assurance engineers testing software on Windows platforms and technical support and escalation engineers dealing with complex software issues.
Dump Analysis Timeline
DumpAnalysis.org congratulates Dmitry Vostokov, its founder, on 5 years of memory dump analysis!
Arts & Photography section
The new link "Arts & Photography" has been added to the top panel featuring cartoons from Narasimha Vedala.
Forthcoming Encyclopedia of Crash Dump Analysis Patterns
Full-color reference book of crash dump analysis patterns. Should be on the desk of every software technical support, escalation, and maintenance software engineer and tester. Preliminary details:
- Title: Encyclopedia of Crash Dump Analysis Patterns
- Author: Dmitry Vostokov
- Publisher: Opentask (15 April 2009)
- Language: English
- Product Dimensions: 21.6 x 14.0
- ISBN-13: 978-1-906717-21-6
- Paperback: 400 pages
Memory Dump Analysis Anthology, Volume 1
Tue, 05/06/2008 - 00:31 — Dmitry Vostokov
Review:
This is a revised, edited, cross-referenced and thematically organized volume of selected DumpAnalysis.org blog posts about crash dump analysis and debugging written in 2006 - 2007 for software engineers developing and maintaining products on Windows platforms, technical support and escalation engineers dealing with complex software issues and general Windows users.
Crash Dump Analysis Forum has been reopened
Crash Dump Analysis and Debugging Forum has been upgraded and reopened again. In order to prevent spammers gaining access any new registration has to be approved by the forum administrator (usually in less than 24 hours).
Advanced Windows® Crash Dump Analysis
This is planned for publication after Windows® Crash Dump Analysis book. Preliminary information is:
Windows® Device Drivers
Forthcoming reference book for technical support and escalation engineers troubleshooting and debugging complex software issues. Can also useful for software engineers transitioning to kernel-mode development or expanding their knowledge and skills. Preliminary information is:
Unmanaged Code: Escaping the Matrix of .NET
This is a forthcoming book about .NET debugging seen in a wider context than CLR. Preliminary information is:
Inside the C++ Object Model
Thu, 02/14/2008 - 13:11 — Dmitry Vostokov
Review:
Although Windows user space and kernel interfaces are based on C language huge amount of code present in crash dumps especially in user space was written in C++ and compiled by C++ compilers. Therefore it is absolutely necessary to understand how C++ constructs need to be translated to C in order to implement various OO concepts like inheritance and polymorphism because from there you can see familiar straightforward mapping between C language constructs and assembly language. This book gives software maintenance and support engineers such solid foundation necessary to understand possible variants of C++ object layout and method dispatch that you might encounter during crash dump analysis.
Reference Stack Traces (Volume 3)
Thu, 01/31/2008 - 16:52 — Dmitry Vostokov
Review:
The reference contains normal thread stacks and other information from Windows Server 2003 x86 complete memory dump. Useful when trying to spot anomalies in crash dumps from problem servers.
Printed versions are available for purchase at the nominal price to cover manufacturing costs:
