preactivate (pre-activate special functionalities)
Description of the 'preactivate' command in HyperDbg.
Previousprealloc (reserve pre-allocated pools)Nextoutput (create output source for event forwarding)
Last updated
Description of the 'preactivate' command in HyperDbg.
Last updated
preactivate
preactivate [Type (string)]
Initializes and pre-activates a specified functionality. This command is mainly used to optimize the pre-allocation of pools for instant events.
This command is only used in the Debugger Mode. In the VMI Mode, the initialization is done automatically.
[Type (string)]
The type of functionality to be initialized.
| Type | |
|---|---|
If you use the '!mode' command in the Debugger Mode, only for the first time, the following error will be shown.
To solve this issue, the following command can be used:
Once you pre-activate the above functionality, it remains active until the next load of the debugger.
This function works by calling DeviceIoControl with IOCTL = IOCTL_PREACTIVATE_FUNCTIONALITY, you have to send it in the following structure.
You should only fill the Type of the above structure when the IOCTL returns from the kernel, other parts of this structure are filled with appropriate KernelStatus.
The Type can be from the following enum:
This command will continue the debuggee for some time (in Debugger Mode). This means that you lose the current context (registers & memory) after executing this command.
None
None
mode
Used for initialization of the '!mode' event command.