Command to check netstat

Doodad Boy
Doodad Boy used Ask the Experts™
on
What are the command can be used during debug windows memory dump to identify list of port and associated application. In normal windows we may use netstat -anob, but how to get to be execute in memory dump
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
"Batchelor", Developer and EE Topic Advisor
Top Expert 2015
Commented:
That is not part of an offline (post-mortem) memory dump, and can only be checked live.
bbaoIT Consultant

Commented:
it depends on what type of memory dump you wan to see. for a general overview, please see below official guide for the options.
https://support.microsoft.com/en-us/help/254649/overview-of-memory-dump-file-options-for-windows
Al faR&D, ITOps Mgr

Commented:
I'm affraid you may have limited  choices to work around, such as:
 - sniffing the box's traffic using wireshark while filtering it for sent and received syn flags in tcp traffic
- use some utility like nirsoft cports to log connection status changes to a file.
- issuing debug prints in your app and  capture it via Windows debugging facilities, dbgview and windbg

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial