gdb # Run; use file command to load $OBJECTgdb $OBJECT # Debug $OBJECTgdb $OBJECT $COREDUMP # Analyze $COREDUMPgdb $OBJECT $PID # Attach to running process $PID
General commands
General gdb commands
set args # Set program argumentsshow args # Show program argumentsrun # Run the programrun < file # Run with input from fileset follow-exec-mode new/sam # Set debugger response to execset write # Set write into executablesset write off # Unset write int oexecutables continue # Continue running until breakfinish # Exec until current frame endssource FILE # Read commands from script fileshell [cmd] # Run cmd in a shelldisplay /5i $eip # Display $eip at execution endundisplay <expr #> # Undisplay expression numberinfo functions # List all the functionsinfo variables # List all the variablesinfo registers # List most common registersinfo all-registers # List all registersinfo display # List of displayed expressionsbacktrace # Backtrace of all stack frameswhere # Same as backtraceset disassembly-flavor intel # Disassembly style to intel/attdefine hook-[cmd] # Action before commanddefine hooopost-[cmd] # Action after commanddefine hook-stop # Action when execution stops
info breakpoints # List all breakpointsbreak [func] # Break function namebreak *[addr] # Break at addressdelete [bnum] # Delete breakpoint bnumbreak if [cond] # Break if conditionignore [bnum] [count] # Ignore breakpoint count timescondition [bnum] $eax == 0x22 # Add condition for breakpointcondition [bnum] # Del condition for breakpoint
info watchpoints # List all the watchpointwatch variable==value # Break when variable equals ...watch $eax == 0x0000ffaa # Break when register equals ...rwatch *[addr] # Break on read memory locationawatch *[addr] # Break on read/write memory location