Accelerated .NET Memory Dump Analysis
$49.00
Minimum price
$49.00
Suggested price

Accelerated .NET Memory Dump Analysis

Training Course Transcript with WinDbg and LLDB Practice Exercises, Seventh Edition

About the Book

The full Software Diagnostics Services training transcript with 15 step-by-step exercises, notes, and source code of specially created modeling applications. The course covers 22 .NET memory dump analysis patterns, plus the additional 21 unmanaged patterns. Learn how to analyze .NET 9 application and service crashes and freezes, navigate through memory dump space (managed and unmanaged code), and diagnose corruption, leaks, CPU spikes, blocked threads, deadlocks, wait chains, resource contention, and more. The training consists of practical step-by-step exercises using WinDbg and LLDB debuggers to diagnose patterns in 64-bit process memory dumps from x64 Windows and x64 Linux environments. The training uses a unique and innovative pattern-oriented analysis approach to speed up the learning curve. The book is a completely revamped and extended the previous Accelerated .NET Core Memory Dump Analysis, Revised Edition. It is updated to the latest WinDbg. It also includes reviews of x64 and IL disassembly and memory space basics, Linux LLDB exercises, .NET memory dump collection on Windows and Linux, and the relationship of analysis patterns to defect mechanism patterns.

Prerequisites: Basic .NET programming and debugging.

Audience: Software technical support and escalation engineers, system administrators, DevOps, performance and reliability engineers, software developers, and quality assurance engineers. The book may also interest security researchers, reverse engineers, malware and memory forensics analysts.

About the Author

Dmitry Vostokov
Dmitry Vostokov

Dmitry Vostokov is an internationally recognized expert, speaker, educator, scientist, inventor, and author. He founded the pattern-oriented software diagnostics, forensics, and prognostics discipline (Systematic Software Diagnostics) and Software Diagnostics Institute. Vostokov has also authored over 50 books on software diagnostics, anomaly detection and analysis, software and memory forensics, root cause analysis and problem solving, memory dump analysis, debugging, software trace and log analysis, reverse engineering, and malware analysis. He has over 30 years of experience in software architecture, design, development, and maintenance in various industries, including leadership, technical, and people management roles. Dmitry founded OpenTask Iterative and Incremental Publishing and Software Diagnostics Technology and Services (former Memory Dump Analysis Services). In his spare time, he explores Software Narratology and Quantum Software Diagnostics. His interest areas are theoretical software diagnostics and its mathematical and computer science foundations, application of formal logic, semiotics, artificial intelligence, machine learning, and data mining to diagnostics and anomaly detection, software diagnostics engineering and diagnostics-driven development, diagnostics workflow and interaction. Recent interest areas also include functional programming, cloud native computing, monitoring, observability, visualization, security, automation, applications of category theory to software diagnostics, development and big data, and diagnostics of artificial intelligence.

Table of Contents

About the Author 5

Introduction 7

Fundamentals (Windows) 17

Fundamentals (Linux) 29

x64 Disassembly Review 39

IL Disassembly Basics 57

Memory Dump Generation 63

Practice Exercises 67

Exercise PN0 (WinDbg) 76

Exercise PN0 (LLDB) 87

Exercise PN1 (Windows) 93

Exercise PN1 (Linux) 114

Exercise PN2 (Windows) 121

Exercise PN3 (Windows) 133

Exercise PN3 (Linux) 157

Exercise PN4 (Windows) 166

Exercise PN4 (Linux) 182

Exercise PN5 (Windows) 194

Exercise PN5 (Linux) 208

Exercise PN6 (Windows) 215

Exercise PN6 (Linux) 229

Exercise PN7 (Windows) 241

Exercise PN7 (Linux) 249

Exercise PN8 (Windows) 254

Exercise PN8 (Linux) 286

Conclusion 291

Application Source Code 301

ApplicationA 303

LinqB 304

LinqC 305

ApplicationD 307

LinqD 309

LinqE 311

LinqF 313

ApplicationG 314

ApplicationH 315

ApplicationI 316

ApplicationJ 318

ApplicationK 320

ApplicationL 322

ApplicationM 324

Other books by this author

Accelerated Linux Core Dump Analysis, Fourth Edition
Dmitry Vostokov
Accelerated .NET Memory Dump Analysis
Dmitry Vostokov
Accelerated Linux Core Dump Analysis, Second Edition, Revised and Extended
Dmitry Vostokov
Accelerated Linux Core Dump Analysis
Dmitry Vostokov
Memory Thinking for C & C++ Linux Diagnostics
Dmitry Vostokov
Accelerated Linux API for Software Diagnostics
Dmitry Vostokov
Accelerated Linux Disassembly, Reconstruction and Reversing, Second Edition
Dmitry Vostokov
Accelerated Mac OS X Core Dump Analysis, Second Edition
Dmitry Vostokov
Accelerated macOS Core Dump Analysis, Third Edition
Dmitry Vostokov
Accelerated Linux Debugging 4D
Dmitry Vostokov
Extended Windows Memory Dump Analysis
Dmitry Vostokov
Encyclopedia of Crash Dump Analysis Patterns
Dmitry Vostokov
Theoretical Software Diagnostics
Dmitry Vostokov
Accelerated Software Trace Analysis, Revised Edition, Part 1
Dmitry Vostokov
Practical Foundations of Windows Debugging, Disassembling, Reversing, Second Edition
Dmitry Vostokov

The Leanpub 60 Day 100% Happiness Guarantee

Within 60 days of purchase you can get a 100% refund on any Leanpub purchase, in two clicks.

Now, this is technically risky for us, since you'll have the book or course files either way. But we're so confident in our products and services, and in our authors and readers, that we're happy to offer a full money back guarantee for everything we sell.

You can only find out how good something is by trying it, and because of our 100% money back guarantee there's literally no risk to do so!

So, there's no reason not to click the Add to Cart button, is there?

See full terms...

Earn $8 on a $10 Purchase, and $16 on a $20 Purchase

We pay 80% royalties on purchases of $7.99 or more, and 80% royalties minus a 50 cent flat fee on purchases between $0.99 and $7.98. You earn $8 on a $10 sale, and $16 on a $20 sale. So, if we sell 5000 non-refunded copies of your book for $20, you'll earn $80,000.

(Yes, some authors have already earned much more than that on Leanpub.)

In fact, authors have earnedover $14 millionwriting, publishing and selling on Leanpub.

Learn more about writing on Leanpub

Free Updates. DRM Free.

If you buy a Leanpub book, you get free updates for as long as the author updates the book! Many authors use Leanpub to publish their books in-progress, while they are writing them. All readers get free updates, regardless of when they bought the book or how much they paid (including free).

Most Leanpub books are available in PDF (for computers) and EPUB (for phones, tablets and Kindle). The formats that a book includes are shown at the top right corner of this page.

Finally, Leanpub books don't have any DRM copy-protection nonsense, so you can easily read them on any supported device.

Learn more about Leanpub's ebook formats and where to read them

Write and Publish on Leanpub

You can use Leanpub to easily write, publish and sell in-progress and completed ebooks and online courses!

Leanpub is a powerful platform for serious authors, combining a simple, elegant writing and publishing workflow with a store focused on selling in-progress ebooks.

Leanpub is a magical typewriter for authors: just write in plain text, and to publish your ebook, just click a button. (Or, if you are producing your ebook your own way, you can even upload your own PDF and/or EPUB files and then publish with one click!) It really is that easy.

Learn more about writing on Leanpub

Publish Early, Publish Often

  • Path
  • There are many paths, but the one you're on right now on Leanpub is...
  • › Dotnet7

*   *   *

Leanpub is copyright © 2010-2025 Ruboss Technology Corp.
All rights reserved.

This site is protected by reCAPTCHA
and the Google Privacy Policy and Terms of Service apply.