- Paperback: 528 pages
- Publisher: Sams Publishing; 1 edition (February 20, 2000)
- Language: English
- ISBN-10: 1578701996
- ISBN-13: 978-1578701995
- Product Dimensions: 5.9 x 1.2 x 8.9 inches
- Shipping Weight: 1.6 pounds (View shipping rates and policies)
- Average Customer Review: 15 customer reviews
- Amazon Best Sellers Rank: #116,117 in Books (See Top 100 in Books)
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Windows NT/2000 Native API Reference 1st Edition
Use the Amazon App to scan ISBNs and compare prices.
Frequently bought together
Customers who bought this item also bought
Under the hood, how does Windows 2000 really work? Windows NT/2000 Native API Reference provides a thorough listing of all available internal or "native" API calls, many of them undocumented. For any advanced C/C++ programmer who writes Win32 device drivers or system utilities, this is an indispensable resource to some truly impossible-to-find information.
The book first explains what native APIs are and what they are good for. Native APIs (which all begin with the "Nt" or "Zw" prefixes) run closer to the operating system (in kernel mode), so they are perfect for those who write device drivers, debuggers, profilers, or other system utilities.
This book lists several hundred native APIs, the C structures they use, and the Win32 calls that invoke them. As a reference, this text is a model of clarity, with each function clearly documented and explained. APIs are grouped by functionality, from finding system information to processes and threads, memory management, file I/O, and other categories. One standout here is the sample code that polls the system for low-level information, which mimics developer utilities that let you view process and thread information. Other short examples include techniques for accessing debugging, profiling, and exception information.
For programmers who write device drivers, this title also includes the plug-and-play and power management APIs used by today's Windows. Interesting appendices include a guide to the way the Win32 NTFS file system organizes data on disks, along with sample code to access--and even decompress--this information.
Whether you want to write device drivers or system utilities, or you just want to learn more about the operating system, this comprehensive guide takes the lid off Windows 2000 and looks inside at its internal functions. --Richard Dragan
Topics covered: Native API overview, native API vs. Win32 API, system information and control, APIs for objects, object directories and symbolic links, virtual memory, sections for memory-mapped files, threads, processes, building ToolHelp utilities with native APIs, Windows 2000 API for jobs, tokens, working with synchronization objects, execution profiling, ports and local procedure calls (LPCs), debugging support with LPCs, opening, reading and writing files, NTFS disk structures, Registry keys, security and auditing, plug-and-play and power management, miscellaneous native APIs, exception and debugging.
From the Back Cover
Windows NT/2000 Native API Reference is absolutely unique. Currently, documentation on WIndows NT's native APIs can only be found through access to the source code or occasionally Web sites where people have chosen to share bits of insight gained through reverse engineering. This book provides the first complete reference to the API functions native to Windows NT and covers the set of services that are offered by Windows NT to both kernel- and user-mode programs. Ideal for the intermediate and advanced level user- and kernel-mode developers of Windows systems, this books is devoted to the NT native API and consists of documentation of the 210 routines included in the API. Also included are all the functions added in Windows 2000.
Top customer reviews
The Native API Reference not only shows you the neat and very useful things that NT can do but does not expose through its Win32 personality; it also tells you which areas are covered by documented Win32 APIs, lessening, one hopes, the gratuitous use of officially undocumented functionality. Right from the start, you will find the NtQuery...() functions fascinating, and if you write kernel-mode code, you will *love* having a complete reference to the Zw...() functions -- no more cursing the horrible DDK documentation.
Intended audience: If you don't know what a handle is, or how Win32 deals with I/O, synchronization, and the like, then this book is not for you; read Richter's _Advanced Windows_ first.
My only wish is for MTP to have chosen a font slightly larger than Flyspeck 3, and maybe less of the black splotches that make the book's pages look like an unbroken string of obituaries.
However, keep in mind that it's a REFERENCE in its purest sense. Although there is some interspersed sample code, it's NOT a tutorial. You need to know already what you're doing before you will benefit from this book.
It is important to note what this book is not. It is not a beginners reference to win32. It will not teach you the how and why of windows programming, and it is not a good starting point for learning about NT internals (However, it is essential once you have understood the basic material and want to do more).
For developers wanting to learn about basic windows programming I recommend "Win32 System Programming" by Johnson M. Hart (ISBN 0-201-70310-6). For those interested in the how and why of 2000 internals I suggest chapter eleven of "Modern Operating Systems" by Andrew S. Tanenbaum, 2nd ed. (ISBN 0-13-031358-0). Chapter 11, pp. 763-851, is a case study explaining how the concepts of OS theory as described in the rest of the chapters apply to Windows 2000.
If you are looking for a book about NT internals then you need to look for some other books. However, if you are a system engineer who spends most of his time doing kernel debugging using SoftIce or Microsoft Kernel Debugger then this book is definitely for you. If you know how to break at each NT native API using SoftIce (or Microsoft KD) and dump the parameters passed to the function then this book is an invaluable help to you. Otherwise, this book is not for you.
Finally, this is the only available text book to the public that has published the prototype of most of NT native APIs. If you need to know those APIs then this book is for you. However, you need to consider the fact that maybe there are some mistakes so you need to verify each API prototype yourself.
0. Read the reviews after mine. People are right about what they say.
1. Native API is (or now was) officially unpublished. Microsoft does not want you to know about this API. In fact, the publisher almost did not publish the book for fear of legal issues.
2. Usually, you need to talk to Microsoft to learn of Native API calls. This book is easier than dealing with Microsoft.
3. Native API evolves. Only Microsoft (and those who've obtained the proper source licenses) know of the new API functions that were added after this book went to print.
4. Native API will help you do a lot of black-magic kernel-mode things, without having to hack/patch the OS. (think memory pools, devices, etc.)
5. This book will not teach you how to do program kernel mode modules. Yet, cnsider this book to be an ESSENTIAL supplement for kernel mode things.
A more complete review of this book appears in the Jan/Feb 2000 edition of The NT Insider.