MEX is Your Friend: Analyzing 32-bit Processes in a 64-bit Kernel Dump

Introduction In 2016, Microsoft publicly released a WinDBG extension called MEX. It has a number of commands that make life easier when kernel debugging or analyzing a crash dumps. You can download it here if you want to give it a

Why does Windows Performance Analyzer Disappear When I Load a Trace?

As mentioned in a previous post, I've been tracking down Windows performance issues using the remarkable Windows Performance Toolkit (WPT). Today, I tried launching the Windows Performance Analyzer tool on a fresh Windows 8.1 system but it silently disappeared when

