The Official Radare2 Book

Serial Port

Enable KD over a serial port on Windows Vista and higher like this:

bcdedit /debug on

bcdedit /dbgsettings serial debugport:1 baudrate:115200

Or like this for Windows XP: Open boot.ini and add /debug /debugport=COM1 /baudrate=115200:

[boot loader]

timeout=30

default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS

[operating systems]

multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Debugging with Cable" /fastdetect /debug /debugport=COM1 /baudrate=57600

In case of VMWare

Virtual Machine Settings -> Add -> Serial Port

Device Status:

[v] Connect at power on

Connection:

[v] Use socket (named pipe)

[_/tmp/winkd.pipe________]

From: Server To: Virtual Machine

Configure the VirtualBox Machine like this:

Preferences -> Serial Ports -> Port 1

[v] Enable Serial Port

Port Number: [_COM1_______[v]]

Port Mode: [_Host_Pipe__[v]]

[v] Create Pipe

Port/File Path: [_/tmp/winkd.pipe____]

Or just spawn the VM with qemu like this:

$ qemu-system-x86_64 -chardev socket,id=serial0,\

path=/tmp/winkd.pipe,nowait,server \

-serial chardev:serial0 -hda Windows7-VM.vdi

Network

Enable KD over network (KDNet) on Windows 7 or later likes this:

bcdedit /debug on

bcdedit /dbgsettings net hostip:w.x.y.z port:n

Starting from Windows 8 there is no way to enforce debugging for every boot, but it is possible to always show the advanced boot options, which allows to enable kernel debugging:

bcedit /set {globalsettings} advancedoptions true

Serial Port

Radare2 will use the winkd io plugin to connect to a socket file created by virtualbox or qemu. Also, the winkd debugger plugin and we should specify the x86-32 too. (32 and 64 bit debugging is supported)

$ r2 -a x86 -b 32 -D winkd winkd:///tmp/winkd.pipe

On Windows you should run the following line:

$ radare2 -D winkd winkd://\\.\pipe\com_1

Network

$ r2 -a x86 -b 32 -d winkd://::w.x.y.z