WinDbg Mona Cheatsheet # Load Mona .load pykd.pyd !py mona # Create pattern (for buffer overflow exploits) !py mona pattern_create 10000 # Get Position from pattern !py mona pattern_offset 396f4338 # Search for jmp esp instructions !py mona jmp -r esp