{"id":13640227,"url":"https://github.com/konstantin89/windows-kernel-debugging-guide","last_synced_at":"2026-01-17T02:40:47.202Z","repository":{"id":98923765,"uuid":"247302443","full_name":"konstantin89/windows-kernel-debugging-guide","owner":"konstantin89","description":"Guide about remote Windows kernel debugging","archived":false,"fork":false,"pushed_at":"2020-03-14T16:30:36.000Z","size":161,"stargazers_count":6,"open_issues_count":0,"forks_count":2,"subscribers_count":2,"default_branch":"master","last_synced_at":"2024-11-09T10:38:59.418Z","etag":null,"topics":["debugging","kernel","visual-studio","windows"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/konstantin89.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2020-03-14T15:30:51.000Z","updated_at":"2024-09-14T18:23:16.000Z","dependencies_parsed_at":"2023-04-04T00:33:20.256Z","dependency_job_id":null,"html_url":"https://github.com/konstantin89/windows-kernel-debugging-guide","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/konstantin89%2Fwindows-kernel-debugging-guide","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/konstantin89%2Fwindows-kernel-debugging-guide/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/konstantin89%2Fwindows-kernel-debugging-guide/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/konstantin89%2Fwindows-kernel-debugging-guide/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/konstantin89","download_url":"https://codeload.github.com/konstantin89/windows-kernel-debugging-guide/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":249840693,"owners_count":21332925,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["debugging","kernel","visual-studio","windows"],"created_at":"2024-08-02T01:01:09.073Z","updated_at":"2025-04-20T02:32:57.370Z","avatar_url":"https://github.com/konstantin89.png","language":null,"funding_links":[],"categories":["Cheat"],"sub_categories":[],"readme":"# windows-kernel-debugging-guide\n\n## Setting up virtual machine\n\n1. Enable kernel debugging\n``` \nbcdedit /debug on\n\n```\n2. Set COM port\n``` \nbcdedit /dbgsettings serial debugport:2 baudrate:115200\n```\n\n3. Turn off Firewall   \n\n4. Install WDK Test Target. Can be copied from the following path on the host machine\n```\nC:\\Program Files (x86)\\Windows Kits\\10\\Remote\\x64\\WDK Test Target Setup x64-x64_en-us.msi\n```\n  \n5. Set COM port for virtual machine\n\n![COM port for virtual machine](./images/com_port_for_debugger.PNG)\n\n## Setting up visual studio debugger\n\n### Config kernel debug device\n\n![COM port for virtual machine](./images/config_debug_device_1.PNG)\n\n![COM port for virtual machine](./images/config_debug_device_2.PNG)\n\n![COM port for virtual machine](./images/config_debug_device_3.PNG)\n\n### Set new device as remote debugged machine\n\n![COM port for virtual machine](./images/config_remote_kernel_host.PNG)\n\n\n## Start debugger session\n\n1. Attach to remote kernel\n\n![COM port for virtual machine](./images/attach_to_remote_kernel.PNG)\n\n2. Copy sys file of drivre to the virtual machine\n\n3. Place break points in driver code\n\n4. Start driver\n```\nsc create Zero type= kernel binPath= C:\\Users\\debuggee\\Desktop\\drivers\\Zero.sys\n```\n5. Use additional service control commands to manage driver\n```\nsc start Zero\nsc stop Zero\nsc delete Zero\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkonstantin89%2Fwindows-kernel-debugging-guide","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkonstantin89%2Fwindows-kernel-debugging-guide","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkonstantin89%2Fwindows-kernel-debugging-guide/lists"}