Windbg 寄存器命令r
2021-07-01
218
0
在Windbg中r指令除了可以显示修改CPU寄存器之外,Pseudo-Register可使用这个命令来修改。对eax 操作,r eax 显示其值,r eax=2,修改其值;r $t2=10,修改Pseudo-Register的值,r @$t2显示其值。
0:001> r
rax=000007fffffdc000 rbx=0000000000000000 rcx=000007fffffd3000
rdx=0000000077729390 rsi=0000000000000000 rdi=0000000000000000
rip=000000007769b1d0 rsp=000000000204f8b8 rbp=0000000000000000
r8=0000000000000000 r9=0000000077729390 r10=0000000000000000
r11=0000000000000000 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0 nv up ei pl zr na po nc
cs=0033 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00000246
ntdll!DbgBreakPoint:
00000000`7769b1d0 cc int 3