Enter your mobile number below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
Getting the download link through email is temporarily not available. Please check back later.

  • Apple
  • Android
  • Windows Phone
  • Android

To get the free app, enter your mobile phone number.

The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System 2nd Edition

5.0 out of 5 stars 6 customer reviews
ISBN-13: 978-1449626365
ISBN-10: 144962636X
Why is ISBN important?
ISBN
This bar-code number lets you verify that you're getting exactly the right version or edition of a book. The 13-digit and 10-digit formats both work.
Scan an ISBN with your phone
Use the Amazon App to scan ISBNs and compare prices.
Trade in your item
Get a $19.78
Gift Card.
Have one to sell? Sell on Amazon
Buy used On clicking this link, a new layer will be open
$35.07 On clicking this link, a new layer will be open
Buy new On clicking this link, a new layer will be open
$53.88 On clicking this link, a new layer will be open
More Buying Choices
31 New from $38.47 21 Used from $35.07
Free Two-Day Shipping for College Students with Prime Student Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student


Windows10ForDummiesVideo
Windows 10 For Dummies Video Training
Get up to speed with Windows 10 with this video training course from For Dummies. Learn more.
$53.88 FREE Shipping. In Stock. Ships from and sold by Amazon.com. Gift-wrap available.
click to open popover

Frequently Bought Together

  • The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System
  • +
  • Practical Reverse Engineering: x86, x64, ARM, Windows Kernel, Reversing Tools, and Obfuscation
  • +
  • The Art of Memory Forensics: Detecting Malware and Threats in Windows, Linux, and Mac Memory
Total price: $149.18
Buy the selected items together
NO_CONTENT_IN_FEATURE

New York Times best sellers
Browse the New York Times best sellers in popular categories like Fiction, Nonfiction, Picture Books and more. See more

Product Details

  • Paperback: 784 pages
  • Publisher: Jones & Bartlett Learning; 2 edition (March 30, 2012)
  • Language: English
  • ISBN-10: 144962636X
  • ISBN-13: 978-1449626365
  • Product Dimensions: 1.8 x 6.2 x 9.2 inches
  • Shipping Weight: 2.4 pounds (View shipping rates and policies)
  • Average Customer Review: 5.0 out of 5 stars  See all reviews (6 customer reviews)
  • Amazon Best Sellers Rank: #393,968 in Books (See Top 100 in Books)

Customer Reviews

5 star
100%
4 star
0%
3 star
0%
2 star
0%
1 star
0%
See all 6 customer reviews
Share your thoughts with other customers

Top Customer Reviews

Format: Paperback Verified Purchase
Got my copy of the book 3 weeks ago, I have to say this is one of the best books I've read on the subject.
I recommended buying it to anyone who wish to know how O/S really works & find out about all those little things that makes the 'magic" happens after boot/login.
The book is NOT for beginners: A prior knowledge of assembly & usage of windows debuggers (such as WinDbg or KD) is recommended.
I had some experience with both, though I had some "rust", and it took me some time googling to be reminded of some stuff, and I wish author would put some additional chapter to subject early in the book.
As an small example: In chapter 3, there is a deep dive into working example how one could implement a "key logger" into "real mode" via TSR. It would really help if author would give small "intro" to TSR saying "write' performed by placing 25H to AH, DS:DX point to new routine, AL = N & that will hook the new function to slot N. True one could understand that from code & after further check internet for int21 documentation, but again it would make reading much "smoother". I assume someone that uses assembly on daily usage probably seems very obvious...

The book is filled with real "gems" as to HOW O/S works, what's get loaded first, who calls who, what registry key to watch out for if someone were to add to list of "Known" DLLs etc. And even though I'm not "security specialist" (I more an hobbyist), I really learned ALOT from this book.
I'm a software engineer for over 8 years, and I must admit only now I understand certain compiler flags & concept like ASLR, /GS & DEP...
Read more ›
1 Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
Great book for all things rootkit related. This covers the majority of rootkit related code and techniques up till about 2010ish. I have not read it cover to cover but I did not see anything about items like patch guard in the book which is highly relevant to rootkits.

This is still one of my highest suggested books even for the few things it does seem to lack.
Comment 4 people found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse
Format: Paperback Verified Purchase
Solid information with great structure. Must have C back ground with solid CS understanding.
Comment One person found this helpful. Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback.
Sorry, we failed to record your vote. Please try again
Report abuse

Set up an Amazon Giveaway

The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System
Amazon Giveaway allows you to run promotional giveaways in order to create buzz, reward your audience, and attract new followers and customers. Learn more about Amazon Giveaway
This item: The Rootkit Arsenal: Escape and Evasion in the Dark Corners of the System