@debugger.bsky.social
I’m a problem solver with a passion for hardcore troubleshooting. If you think it can’t be fixed, that’s exactly when I get interested.
@reconmtl.bsky.social has uploaded the majority of the 2025 talks, including my talk on LSA. You can check it out at the below link if you'd like.
Thank you again to the organizers and everyone else who helps put on the conference. I look forward to coming back!
youtu.be/G2CfMWXLU1U?...
Just posted a write-up on a DC hang traced to a deadlock inside LSASS. I break down call stacks, the blocked threads, and how doing LDAP work in DllMain triggered the issue. medium.com/@Debugger/se...
16.10.2025 10:19 — 👍 0 🔁 0 💬 0 📌 0Interesting memory dump analysis in WinDbg. I think it's very useful not to show only the "golden path" to the solution!
10.10.2025 14:24 — 👍 0 🔁 1 💬 0 📌 0To be honest, I can't believe I missed this. The !analyze -v command was already pointing to the driver as the cause, but I ignored it. I guess I'll have to double-check more carefully next time, but I'm satisfied with the analysis I've done. 😅
08.10.2025 01:29 — 👍 0 🔁 0 💬 0 📌 0Of course the private symbols are not available, so the ETW traces might be difficult to read. Other than that, it collects relevant data though :-)
21.09.2025 10:01 — 👍 0 🔁 0 💬 0 📌 0
Anyone used the TSS Troubleshooting script from MSFT before? I saw an Escalation Engineer used it, so I'd thought it could be interesting to others as well. The use-case was troubleshooting LSASS high CPU on a DC... learn.microsoft.com/en-us/troubl...
21.09.2025 09:42 — 👍 1 🔁 0 💬 2 📌 0Has anyone already ditched Twitter for Bluesky? I’m still more active on Twitter, but I’ve noticed some people have moved over to Bluesky.
13.09.2025 14:14 — 👍 4 🔁 0 💬 4 📌 1Eww PowerShell.
12.09.2025 17:49 — 👍 0 🔁 0 💬 0 📌 0
New blog post of me analyzing a crash dump with the bugcheck 0x9F. Root cause was a power IRP timeout in RAS SSTP during a device removal. The post walks PnP locks, the stuck IRP, and more, including my thought process. Check it out here: medium.com/@Debugger/po...
12.09.2025 17:46 — 👍 3 🔁 1 💬 0 📌 1
Ever tried VSS tracing? I’ve been using it to troubleshoot Volume Shadow Copy issues. It’s super useful but not widely known, so I wrote a quick blog post about it. medium.com/@Debugger/tr...
11.05.2025 08:24 — 👍 0 🔁 0 💬 0 📌 0Agreed. I still use Twitter though, but I've reduced my social media time a lot.
07.04.2025 09:04 — 👍 2 🔁 0 💬 0 📌 0Yeah, same here :)
07.04.2025 08:16 — 👍 0 🔁 0 💬 0 📌 0Is there anyone who completely ditched Twitter and now only uses Blue Sky? 😅
07.04.2025 08:10 — 👍 1 🔁 0 💬 3 📌 0
Always wanted to know how to use Time Travel Debugging (TTD) to record lsass.exe? Well, here you have a chance to go for it. I haven't seen much documentation online where this is discussed. github.com/DebugPrivile...
05.02.2025 18:30 — 👍 1 🔁 0 💬 0 📌 0For those that are doing a lot of log analysis. textanalysistool.github.io is a free open-source tool that I've been using to analyze ESXi, Citrix, MpLogs, Teams support logs, etc. It can be useful when you deal with those raw format logs.
15.01.2025 11:03 — 👍 0 🔁 0 💬 0 📌 0Who uses WinDbg as well in their daily work?
09.01.2025 13:35 — 👍 0 🔁 0 💬 0 📌 0- No more pizza with pineapple
07.01.2025 17:14 — 👍 1 🔁 0 💬 0 📌 0Interesting old blog post from MSRC where they are talking about their in-house tool called ''VulnScan'' to automate the triage and root cause analysis of memory corruption issues. It's built on top of WinDbg and Time Travel Debugging as well! msrc.microsoft.com/blog/2017/10...
03.01.2025 08:55 — 👍 2 🔁 0 💬 0 📌 0
Wishing everyone a Happy and Healthy 2025! 🎉- In case you missed it, I created a GitHub repository in 2024 covering Windows Debugging topics. It includes using tools like WinDbg to analyze memory dumps and more. If you're into Windows, check it out here: github.com/DebugPrivile...
31.12.2024 10:11 — 👍 7 🔁 1 💬 0 📌 0
