Windows Internals, Part 1
by Russinovich, Mark E.; Solomon, David A.; Ionescu, AlexEdition: 6th
Format: Paperback
Pub. Date: 2012-03-15
Publisher(s): Microsoft Press
Other versions by this Author
-
This Item Qualifies for Free Shipping!*
*Excludes marketplace orders.
List Price: $47.24
Rent Book
Select for Price
New Book
We're Sorry
Sold Out
Used Book
We're Sorry
Sold Out
eBook
We're Sorry
Not Available
How Marketplace Works:
- This item is offered by an independent seller and not shipped from our warehouse
- Item details like edition and cover design may differ from our description; see seller's comments before ordering.
- Sellers much confirm and ship within two business days; otherwise, the order will be cancelled and refunded.
- Marketplace purchases cannot be returned to eCampus.com. Contact the seller directly for inquiries; if no response within two days, contact customer service.
- Additional shipping costs apply to Marketplace purchases. Review shipping costs at checkout.
Summary
Delve inside Windows architecture and internalsguided by a team of internationally renowned internals experts. Fully updated for Windows 7 and Windows Server 2008 R2, this classic guide delivers key architectural insights on system design, debugging, performance, and supportalong with hands-on experiments to experience Windows internal behavior firsthand. See how Windows components work behind the scenes: Understand how the core system and management mechanisms work Explore internal system data structures using tools like the kernel debugger Go inside the Windows security model to see how it authorizes access to data Understand how Windows manages physical and virtual memory Tour the Windows networking stack from top to bottom Troubleshoot file-system access problems and system boot problems Learn how to analyze crashes
Author Biography
Alex Ionescu is a chief software architect and consultant expert in low-level system software, kernel development, security training, and reverse engineering. He teaches Windows internals course with David Solomon, and is active in the security research community.
Table of Contents
| Introduction | |
| Structure of the Book | |
| History of the Book | |
| Sixth Edition Changes | |
| Hands-on Experiments | |
| Topics Not Covered | |
| A Warning and a Caveat | |
| Acknowledgments | |
| Errata & Book Support | |
| We Want to Hear from You | |
| Stay in Touch | |
| Concepts and Tools | |
| Windows Operating System Versions | |
| Foundation Concepts and Terms | |
| Digging into Windows Internals | |
| Conclusion | |
| System Architecture | |
| Requirements and Design Goals | |
| Operating System Model | |
| Architecture Overview | |
| Key System Components | |
| Conclusion | |
| System Mechanisms | |
| Trap Dispatching | |
| Object Manager | |
| Synchronization | |
| System Worker Threads | |
| Windows Global Flags | |
| Advanced Local Procedure Call | |
| Kernel Event Tracing | |
| Wow64 | |
| User-Mode Debugging | |
| Image Loader | |
| Hypervisor (Hyper-V) | |
| Kernel Transaction Manager | |
| Hotpatch Support | |
| Kernel Patch Protection | |
| Code Integrity | |
| Conclusion | |
| Management Mechanisms | |
| The Registry | |
| Services | |
| Unified Background Process Manager | |
| Windows Management Instrumentation | |
| Windows Diagnostic Infrastructure | |
| Conclusion | |
| Processes, Threads, and Jobs | |
| Process Internals | |
| Protected Processes | |
| Flow of CreateProcess | |
| Thread Internals | |
| Examining Thread Activity | |
| Worker Factories (Thread Pools) | |
| Thread Scheduling | |
| Processor Share-Based Scheduling | |
| Dynamic Processor Addition and Replacement | |
| Job Objects | |
| Conclusion | |
| Security | |
| Security Ratings | |
| Security System Components | |
| Protecting Objects | |
| The AuthZ API | |
| Account Rights and Privileges | |
| Access Tokens of Processes and Threads | |
| Security Auditing | |
| Logon | |
| User Account Control and Virtualization | |
| Application Identification (AppID) | |
| AppLocker | |
| Software Restriction Policies | |
| Conclusion | |
| Networking | |
| Windows Networking Architecture | |
| Networking APIs | |
| Multiple Redirector Support | |
| Distributed File System Namespace | |
| Distributed File System Replication | |
| Offline Files | |
| BranchCache | |
| Name Resolution | |
| Location and Topology | |
| Protocol Drivers | |
| NDIS Drivers | |
| Binding | |
| Layered Network Services | |
| Conclusion | |
| About The Authors | |
| More Resources for Developers | |
| Microsoft PressĀ® books | |
| Find the Right Resource for You | |
| Table of Contents provided by Publisher. All Rights Reserved. |
An electronic version of this book is available through VitalSource.
This book is viewable on PC, Mac, iPhone, iPad, iPod Touch, and most smartphones.
By purchasing, you will be able to view this book online, as well as download it, for the chosen number of days.
Digital License
You are licensing a digital product for a set duration. Durations are set forth in the product description, with "Lifetime" typically meaning five (5) years of online access and permanent download to a supported device. All licenses are non-transferable.
More details can be found here.
A downloadable version of this book is available through the eCampus Reader or compatible Adobe readers.
Applications are available on iOS, Android, PC, Mac, and Windows Mobile platforms.
Please view the compatibility matrix prior to purchase.