Books & Videos

Table of Contents

  1. Chapter 1 Concepts and Tools

    1. Windows Operating System Versions

    2. Foundation Concepts and Terms

    3. Digging into Windows Internals

    4. Conclusion

  2. Chapter 2 System Architecture

    1. Requirements and Design Goals

    2. Operating System Model

    3. Architecture Overview

    4. Key System Components

    5. Conclusion

  3. Chapter 3 System Mechanisms

    1. Trap Dispatching

    2. Object Manager

    3. Synchronization

    4. System Worker Threads

    5. Windows Global Flags

    6. Advanced Local Procedure Call

    7. Kernel Event Tracing

    8. Wow64

    9. User-Mode Debugging

    10. Image Loader

    11. Hypervisor (Hyper-V)

    12. Kernel Transaction Manager

    13. Hotpatch Support

    14. Kernel Patch Protection

    15. Code Integrity

    16. Conclusion

  4. Chapter 4 Management Mechanisms

    1. The Registry

    2. Services

    3. Unified Background Process Manager

    4. Windows Management Instrumentation

    5. Windows Diagnostic Infrastructure

    6. Conclusion

  5. Chapter 5 Processes, Threads, and Jobs

    1. Process Internals

    2. Protected Processes

    3. Flow of CreateProcess

    4. Thread Internals

    5. Examining Thread Activity

    6. Worker Factories (Thread Pools)

    7. Thread Scheduling

    8. Processor Share-Based Scheduling

    9. Dynamic Processor Addition and Replacement

    10. Job Objects

    11. Conclusion

  6. Chapter 6 Security

    1. Security Ratings

    2. Security System Components

    3. Protecting Objects

    4. The AuthZ API

    5. Account Rights and Privileges

    6. Access Tokens of Processes and Threads

    7. Security Auditing

    8. Logon

    9. User Account Control and Virtualization

    10. Application Identification (AppID)

    11. AppLocker

    12. Software Restriction Policies

    13. Conclusion

  7. Chapter 7 Networking

    1. Windows Networking Architecture

    2. Networking APIs

    3. Multiple Redirector Support

    4. Distributed File System Namespace

    5. Distributed File System Replication

    6. Offline Files

    7. BranchCache

    8. Name Resolution

    9. Location and Topology

    10. Protocol Drivers

    11. NDIS Drivers

    12. Binding

    13. Layered Network Services

    14. Conclusion

  1. Appendix About the Authors

  2. Appendix More Resources for Developers

    1. Microsoft Press® books

  3. Appendix Find the Right Resource for You