menu: Debug - New Breakpoint(ctrl+B) vs菜单:调试 - 新断点(ctrl+B)
Function:{,,dynamic.dll}_functionW@size
e.g.
{,,kernel32.dll}_CreateProcessW@40
- dynamic is the DLL name dynamic为DLL名称
- NOTICE there is a underline at the front of 'function' 注意函数名前有下划线
- function is the function name function为函数名
- W/A is ascii or unicode function W/A为区别windows API的ascii和unicode版
- size is the size of all arguments of the function, more size为函数所有参数的字节数,详细
for example 例如:
int
WINAPI
MessageBoxW(
__in_opt HWND hWnd,
__in_opt LPCWSTR lpText,
__in_opt LPCWSTR lpCaption,
__in UINT uType);
size = sizeof(HWND) + sizeof(LPCWSTR) + sizeof(LPCWSTR) + sizeof(UINT)
或者 or
C:\Program Files (x86)\Debugging Tools for Windows (x86)>dbh.exe -s:srv*C:\Symbo ls*http://msdl.microsoft.com/Download/Symbols -d C:\Windows\SysWOW64\user32.dl l enum *MessageBox*
so, the breakpoint at the 'messagebox' function is 所以,messagebox函数的断点function应添为
{,, User32.dll}_MessageBoxW@16
reference 参考
标签:
windows
日期: 2014-05-30 17:30:06, 10 years and 231 days ago
