What do you think?
Rate this book
Windows Internals
Windows Internals, Part 1: Covering Windows Server 2008 R2 and Windows 7
Delve inside Windows architecture and internals—and see how core components work behind the scenes. Led by three renowned internals experts, this classic guide is fully updated for Windows 7 and Windows Server 2008 R2—and now presents its coverage in two volumes.
As always, you get critical insider perspectives on how Windows operates. And through hands-on experiments, you’ll experience its internal behavior firsthand—knowledge you can apply to improve application design, debugging, system performance, and support.
In Part 1, you will:
Understand how core system and management mechanisms work—including the object manager, synchronization, Wow64, Hyper-V, and the registry
Examine the data structures and activities behind processes, threads, and jobs
Go inside the Windows security model to see how it manages access, auditing, and authorization
Explore the Windows networking stack from top to bottom—including APIs, BranchCache, protocol and NDIS drivers, and layered services
Dig into internals hands-on using the kernel debugger, performance monitor, and other tools
As always, you get critical insider perspectives on how Windows operates. And through hands-on experiments, you’ll experience its internal behavior firsthand—knowledge you can apply to improve application design, debugging, system performance, and support.
In Part 1, you will:
Understand how core system and management mechanisms work—including the object manager, synchronization, Wow64, Hyper-V, and the registry
Examine the data structures and activities behind processes, threads, and jobs
Go inside the Windows security model to see how it manages access, auditing, and authorization
Explore the Windows networking stack from top to bottom—including APIs, BranchCache, protocol and NDIS drivers, and layered services
Dig into internals hands-on using the kernel debugger, performance monitor, and other tools
752 pages, Paperback
Published April 8, 2012
74 people are currently reading
356 people want to read
About the author
Mark E. Russinovich
47 books366 followersMark Russinovich is a Technical Fellow in Windows Azure, Microsoft's cloud operating system group. Russinovich is a widely recognized expert in Windows operating system internals as well as operating system architecture and design.
Russinovich joined Microsoft when Microsoft acquired Winternals software, the company he cofounded in 1996 and where he worked as Chief Software Architect. He is also cofounder of Sysinternals.com, where he wrote and published dozens of popular Windows administration and diagnostic utilities including Autoruns, Process Explorer and Tcpview.
Russinovich coauthored "Windows Internals" and "The Sysinternals Administrator's Reference," both from Microsoft Press, authored the cyberthriller Zero Day, is a Contributing Editor for TechNet Magazine and Senior Contributing Editor for Windows IT Pro Magazine, and has written many articles on Windows internals. He has been a featured speaker at major industry conferences around the world, including Microsoft's TechEd, IT Forum, and Professional Developer's Conference, as well as Windows Connections, Windev, and TechMentor, and has taught Windows internals, troubleshooting and file system and device driver development to companies worldwide, including Microsoft, the CIA and the FBI. Russinovich earned his Ph.D. in computer engineering from Carnegie Mellon University.
Russinovich joined Microsoft when Microsoft acquired Winternals software, the company he cofounded in 1996 and where he worked as Chief Software Architect. He is also cofounder of Sysinternals.com, where he wrote and published dozens of popular Windows administration and diagnostic utilities including Autoruns, Process Explorer and Tcpview.
Russinovich coauthored "Windows Internals" and "The Sysinternals Administrator's Reference," both from Microsoft Press, authored the cyberthriller Zero Day, is a Contributing Editor for TechNet Magazine and Senior Contributing Editor for Windows IT Pro Magazine, and has written many articles on Windows internals. He has been a featured speaker at major industry conferences around the world, including Microsoft's TechEd, IT Forum, and Professional Developer's Conference, as well as Windows Connections, Windev, and TechMentor, and has taught Windows internals, troubleshooting and file system and device driver development to companies worldwide, including Microsoft, the CIA and the FBI. Russinovich earned his Ph.D. in computer engineering from Carnegie Mellon University.
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 4 of 4 reviews
November 2, 2020
Great reference for a lot of info that's essential for driver testing or development under the windows OS.
May 18, 2016
It has an excellent description of windows internals with helpful exercises to try. Although sometimes a lot of time is expended on not that important subjects while some important ones received little attention and it can be boring in some places.
Despite of that it is an excellent reference to understand the complexity of this OS, to learn a bit about the history behind some features and to get a good idea how complex a OS could be and why Windows is going to live for a long time still.
I'll recommend doing the exercises when possible, they are well defined and are not hard to do.
Despite of that it is an excellent reference to understand the complexity of this OS, to learn a bit about the history behind some features and to get a good idea how complex a OS could be and why Windows is going to live for a long time still.
I'll recommend doing the exercises when possible, they are well defined and are not hard to do.
July 19, 2015
It's detailed and structured. Topics on different subsytems of the windows kernel are good- memory management, process structure, etc.
June 5, 2016
Still reads a bit flakey in describing non-NTOS parts. Part 2 gets to The Good Stuff
Displaying 1 - 4 of 4 reviews