MEX is Your Friend: Analyzing 32-bit Processes in a 64-bit Kernel Dump

Introduction In 2016, Microsoft publicly released a WinDBG extension called MEX. It has a number of commands that make life easier when kernel debugging or analyzing a crash dumps. You can download it here if you want to give it a … Continue reading

