WINDOWS INTERNALS FOR REVERSE ENGINEERSWINDOWS INTERNALS FOR REVERSE ENGINEERS - Alex Ionescu
Learn the internals of the Windows Kernel and its NT-based architecture, including the upcoming Windows 10 "Vanadium" (19H2) and "Vibranium" (20H1) plus Server 2019, in order to learn how rootkits, PLA implants, NSA backdoors, and other malicious tools exploit the various system functionalities, mechanisms and data structures to do their dirty work. Also learn how kernel-mode code operates and how it can be subject to attack from user-mode callers to elevate their privileges. Finally, learn how CPU architecture deeply ties into OS design, and how Intel and AMD's mistakes can lead to more pwnage. While you might say this latter part is trying to capitalize on recent events, it's worth nothing it's been in the course since day 1.