windows-7 kernel windbg sql-server-data-tools

How to get address of Shadow SSDT?

I want to get the address of SSDT and Shadow SSDT using windbg.Windbg successfully connected to vmware .which commmand i have to use to get the address of these tables?

Solution

The x command displays the symbols in all contexts that match the specified pattern x [Options] Module!Symbol.

lkd> x nt!*keservicedescriptortable*
82da2980 nt!KeServiceDescriptorTableShadow = <no type information>
82da2940 nt!KeServiceDescriptorTable = <no type information>

lkd> dps 82da2980 
82da2980  82c9f634 nt!KiServiceTable
82da2984  00000000
82da2988  00000191
82da298c  82c9fc7c nt!KiArgumentTable
82da2990  95b66000 win32k!W32pServiceTable
82da2994  00000000
82da2998  00000339
82da299c  95b6702c win32k!W32pArgumentTable

How do you disable ASLR (address space layout randomization) on Windows 7 x64?
Is Task Manager a special kind of 'Always on Top' window for windows 10?
How to minimize a window to the taskbar? (i.e. not iconify)
How I can solve system permission errors in a python script?
Console application closes immediately after opening in visual studio
VS Code not running windows 7 64bit
Local SMTP server that can be used for testing and development - won't actually deliver mail
How can I rename a VB6 executable?
custom combobox in wpf Application
How do I get a local NT Service SID using Powershell?
Run a batch file with Windows task scheduler
The source was not found, but some or all event logs could not be searched
Windows 7 task scheduler doesn't use updated path
Failed to use OnnxRuntime on Windows 7
GCC 4.2.1 Compiling on Cygwin(Win7 64bit) for iPhone
Connect to serial port using PuTTY
How to recursively delete an entire directory with PowerShell 2.0?
How to open a file from the command line with a specified program?
I want to know which is the best 'C' compiler for Windows 7?
Python incorrectly detects 32-bit system on Windows 8.1 64-bit
Git Bash is extremely slow on Windows 7 x64
Windows Batch: How to add Host-Entries?
DOS error: "was unexpected at this time."?
Opening file with spaces in Windows via Command Prompt
Why am I getting ImportError: No module named pip ' right after installing pip?
Application only runs if you run as administrator?
Default state of the systray icon
How do I change the default location for Git Bash on Windows?
MingW c++ compile Error Win 7 x64
/Fe (Name EXE File) is not working