Link to home
Start Free TrialLog in
Avatar of Doodad Boy
Doodad BoyFlag for Malaysia

asked on

Command to check netstat

What are the command can be used during debug windows memory dump to identify list of port and associated application. In normal windows we may use netstat -anob, but how to get to be execute in memory dump
ASKER CERTIFIED SOLUTION
Avatar of Qlemo
Qlemo
Flag of Germany image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
it depends on what type of memory dump you wan to see. for a general overview, please see below official guide for the options.
https://support.microsoft.com/en-us/help/254649/overview-of-memory-dump-file-options-for-windows
I'm affraid you may have limited  choices to work around, such as:
 - sniffing the box's traffic using wireshark while filtering it for sent and received syn flags in tcp traffic
- use some utility like nirsoft cports to log connection status changes to a file.
- issuing debug prints in your app and  capture it via Windows debugging facilities, dbgview and windbg