- Paperback: 784 pages
- Publisher: Jones & Bartlett Learning; 2 edition (March 30, 2012)
- Language: English
- ISBN-10: 144962636X
- ISBN-13: 978-1449626365
- Product Dimensions: 1.8 x 6.2 x 9.2 inches
- Shipping Weight: 2.4 pounds (View shipping rates and policies)
- Average Customer Review: 5.0 out of 5 stars See all reviews (6 customer reviews)
- Amazon Best Sellers Rank: #393,968 in Books (See Top 100 in Books)
Enter your mobile number below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
Getting the download link through email is temporarily not available. Please check back later.
To get the free app, enter your mobile phone number.
The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System 2nd Edition
Use the Amazon App to scan ISBNs and compare prices.
Windows 10 For Dummies Video Training
Get up to speed with Windows 10 with this video training course from For Dummies. Learn more.
Frequently Bought Together
Customers Who Bought This Item Also Bought
Top Customer Reviews
I recommended buying it to anyone who wish to know how O/S really works & find out about all those little things that makes the 'magic" happens after boot/login.
The book is NOT for beginners: A prior knowledge of assembly & usage of windows debuggers (such as WinDbg or KD) is recommended.
I had some experience with both, though I had some "rust", and it took me some time googling to be reminded of some stuff, and I wish author would put some additional chapter to subject early in the book.
As an small example: In chapter 3, there is a deep dive into working example how one could implement a "key logger" into "real mode" via TSR. It would really help if author would give small "intro" to TSR saying "write' performed by placing 25H to AH, DS:DX point to new routine, AL = N & that will hook the new function to slot N. True one could understand that from code & after further check internet for int21 documentation, but again it would make reading much "smoother". I assume someone that uses assembly on daily usage probably seems very obvious...
The book is filled with real "gems" as to HOW O/S works, what's get loaded first, who calls who, what registry key to watch out for if someone were to add to list of "Known" DLLs etc. And even though I'm not "security specialist" (I more an hobbyist), I really learned ALOT from this book.
I'm a software engineer for over 8 years, and I must admit only now I understand certain compiler flags & concept like ASLR, /GS & DEP...Read more ›
This is still one of my highest suggested books even for the few things it does seem to lack.
Most Recent Customer Reviews
This is book is brilliant! I really think this is the bible on rootkit development! Have learnt so much from it.Published 11 months ago by Golumo
Brilliant book. I wish more than snippets of code were available. Even if you don't end up making rootkit, you'll learn a lot from this bookPublished on April 20, 2014 by Mike Park