$29.52 with 51 percent savings
List Price: $59.99
The List Price is the suggested retail price of a new product as provided by a manufacturer, supplier, or seller. Except for books, Amazon will display a List Price if the product was purchased by customers on Amazon or offered by other retailers at or above the List Price in at least the past 90 days. List prices may not necessarily reflect the product's prevailing market price.
Learn more
FREE delivery Saturday, November 23. Details
Or fastest delivery November 20 - 22. Details
Only 1 left in stock - order soon.
$$29.52 () Includes selected options. Includes initial monthly payment and selected options. Details
Price
Subtotal
$$29.52
Subtotal
Initial payment breakdown
Shipping cost, delivery date, and order total (including tax) shown at checkout.
Ships from
Woodcastle Books
Ships from
Woodcastle Books
Returns
Returnable until Jan 31, 2025
Returnable until Jan 31, 2025
For the 2024 holiday season, eligible items purchased between November 1 and December 31, 2024 can be returned until January 31, 2025.
Read full return policy
Returns
Returnable until Jan 31, 2025
For the 2024 holiday season, eligible items purchased between November 1 and December 31, 2024 can be returned until January 31, 2025.
Read full return policy
Payment
Secure transaction
Your transaction is secure
We work hard to protect your security and privacy. Our payment security system encrypts your information during transmission. We don’t share your credit card details with third-party sellers, and we don’t sell your information to others. Learn more
Payment
Secure transaction
We work hard to protect your security and privacy. Our payment security system encrypts your information during transmission. We don’t share your credit card details with third-party sellers, and we don’t sell your information to others. Learn more
Kindle app logo image

Download the free Kindle app and start reading Kindle books instantly on your smartphone, tablet, or computer - no Kindle device required.

Read instantly on your browser with Kindle for Web.

Using your mobile phone camera - scan the code below and download the Kindle app.

QR code to download the Kindle App

Follow the authors

See all
Mark E. Russinovich
Follow
Jamie E. Hanrahan
Follow
Something went wrong. Please try your request again later.

Windows Internals: System architecture, processes, threads, memory management, and more, Part 1 (Developer Reference) 7th Edition

4.8 4.8 out of 5 stars 432 ratings
See all formats and editions
{"desktop_buybox_group_1":[{"displayPrice":"$29.52","priceAmount":29.52,"currencySymbol":"$","integerValue":"29","decimalSeparator":".","fractionalValue":"52","symbolPosition":"left","hasSpace":false,"showFractionalPartIfEmpty":true,"offerListingId":"Yh3uV%2FVynDiga46tfLKVdVD9yjUpPv8f3AyEOcsHBdYYHc%2FXQ7sRSzayJC0b5X%2Fg5cyfyD0BE3YlKw0t5xiNS6rXqyOkH8Y1fjx9LQcl%2FCnOHWwWZJ56c0lNymZjGcW8UtT9I%2FnF5EmacpQUfdcmSqEOb9EbOg%2FUbfeSOrqiah0ySGAbxl%2BTt8gnzpqrd4dU","locale":"en-US","buyingOptionType":"NEW","aapiBuyingOptionIndex":0}]}

Purchase options and add-ons

Delve inside Windows architecture and internals - and see how core components work behind the scenes. This classic guide has been fully updated for Windows 10 and Windows Server 2016, and now presents its coverage in two parts.
Previous slide of product details
  1. ISBN-10
    9780735684188
  2. ISBN-13
    978-0735684188
  3. Edition
    7th
  4. Publisher
    Microsoft Press
  5. Publication date
    May 5, 2017
  6. Book 1 of 2
    Developer Reference Windows Internals
  7. Language
    English
  8. Dimensions
    7.45 x 1.85 x 9.05 inches
  9. Print length
    800 pages
  10. See all details
Next slide of product details
Amazon First Reads | Editors' picks at exclusive prices

Frequently bought together

Windows Internals: System architecture, processes, threads, memory management, and more, Part 1 (Developer Reference)
This item: Windows Internals: System architecture, processes, threads, memory management, and more, Part 1 (Developer Reference)
$29.52
Only 1 left in stock - order soon.
Ships from and sold by Woodcastle Books.
+
Windows Internals, Part 2 (Developer Reference)
$48.40
Get it as soon as Tuesday, Nov 19
In Stock
Ships from and sold by Amazon.com.
+
Troubleshooting with the Windows Sysinternals Tools (IT Best Practices - Microsoft Press)
$29.55
Only 1 left in stock - order soon.
Ships from and sold by Inspire trading.
Total price: $00
To see our price, add these items to your cart.
Details
Added to Cart
spCSRF_Treatment
Some of these items ship sooner than the others.
Show details Hide details
Choose items to buy together.

Editorial Reviews

About the Author

Pavel Yosifovich is a software developer and trainer, specializing in Microsoft technologies and tools. He is also an MVP and a PluralSight author.

Product details

  • ASIN ‏ : ‎ 0735684189
  • Publisher ‏ : ‎ Microsoft Press; 7th edition (May 5, 2017)
  • Language ‏ : ‎ English
  • Paperback ‏ : ‎ 800 pages
  • ISBN-10 ‏ : ‎ 9780735684188
  • ISBN-13 ‏ : ‎ 978-0735684188
  • Item Weight ‏ : ‎ 2.31 pounds
  • Dimensions ‏ : ‎ 7.45 x 1.85 x 9.05 inches
  • Customer Reviews:
    4.8 4.8 out of 5 stars 432 ratings

About the authors

Follow authors to get new release updates, plus improved recommendations.
Previous page
  1. Mark E. Russinovich

    Mark E. Russinovich

    Brief content visible, double tap to read full content.
    Full content visible, double tap to read brief content.

    Mark Russinovich works at Microsoft as a Technical Fellow, Microsoft's senior-most technical position. He joined the company when Microsoft acquired Winternals software, which he co-founded in 1996. He is also author of the popular Sysinternals tools. He is coauthor of the Windows Internals book series, a contributing editor for TechNet Magazine, and a senior contributing editor for Windows IT Pro Magazine. He lives in Washington State with his wife, daughter, two dogs and two cats.

    See more on the author's page
  2. Jamie E. Hanrahan

    Jamie E. Hanrahan

    Brief content visible, double tap to read full content.
    Full content visible, double tap to read brief content.

    Discover more of the author’s books, see similar authors, read book recommendations and more.

    See more on the author's page
  3. Pavel Yosifovich

    Pavel Yosifovich

    Brief content visible, double tap to read full content.
    Full content visible, double tap to read brief content.

    Pavel is a developer, trainer, author, and speaker. Pavel loves all things software and still sometimes misses his old Commodore 64. He's also a PluralSight author and a Microsoft MVP.

    See more on the author's page
  4. Alex Ionescu

    Alex Ionescu

    Brief content visible, double tap to read full content.
    Full content visible, double tap to read brief content.

    I’ve been living, breathing, and training in operating systems and cybersecurity technology for almost two decades, and there’s nothing I love more. In part thanks to my ground-breaking research and wealth of Windows Internals knowledge, I am honored to have been recently recognized by the United States Government as an Alien of Extraordinary Ability, “demonstrating internationally recognized extraordinary abilities in the sciences through sustained national or international acclaim.”

    As a developer, I started my career as one of the key lead kernel developers on the open source ReactOS project, and re-implemented from scratch, based on reverse engineering and black box testing, large parts of the Windows XP/2003 kernel (which was, at the time, current). Throughout that work, I uncovered dozens of vulnerabilities and just plain old bugs in the kernel and its many associated subsystems and drivers, both in user-mode and kernel-mode. I then moved on to work at Apple, Inc. where I was an intern and then part-time remote software engineer while completing my studies, and worked on the Core Platform team, where I helped port both iOS and iBoot, as well as related drivers, to exciting new platforms, ARM architectures, and SOCs, as well as worked on interesting and varied user-mode infrastructure such as SpringBoard, Mach RPC, and CoreAnimation. Finally, I joined CrowdStrike, Inc., as part of its launch team over five years ago, where I initially started as its Chief Architect, responsible for the overall vision and design of its endpoint security product, and have recently taken on a new role as the Vice President of EDR Strategy, to help cement its lead in the market and unparalleled visibility into operating system behaviors.

    As a reverse engineer, I began tearing apart Windows long before my involvement with ReactOS. While now having joined the relics of GeoCities, Planet Source Code was a popular coding website where developers compete against one another to win the coveted “Superior Code Award”. Each of my 8 submissions gathered exclusively five-star reviews, and I had won the award three times by the time I moved on. My ongoing reverse engineering work and research led me to first publish at Recon in 2006 and BlackHat in 2008, followed by many more security conferences, where I have now participated in for over a decade.

    Finally, as a teacher and technical writer, I first began by publishing an 125-page paper on Windows Internals on Planet Source Code, which covered key windows structures in the NT kernel, and was one of the first to leverage the use of Microsoft’s Public Symbol Files (PDB) to extract type data from the kernel. I later followed-up with an entire reverse engineering overview of the Visual Basic 6 File Format, which was used by many decompilers at the time (as well as some contracting work on the side). Finally, I eventually published a similar guide on the NTFS File Format, which greatly helped the ntfs-3g Linux Project achieve a more consistent understanding of the various data structures involved. I began giving small presentations on ReactOS and NT internals at various locations, including a presentation at Waterloo University in Canada, which eventually led to my contracting with David Solomon Expert Seminars, Inc., a real titan in the Windows Internals training world. Just as Winternals and Mark Russinovich had been acquired by Microsoft, I was contracted to “fill his shoes” (an impossible task) and began giving regular trainings at Microsoft for David, followed by a growing list of additional customers and organizations.

    I now own my own consulting company, Winsider Seminars & Solutions, Inc., and continue to focus on researching, writing, and writing, about Windows. Please visit our training offerings on the site at http://www.windows-internals.com to see if our topics are of interest, or feel free to shoot me an e-mail if you have something custom in mind.

    See more on the author's page
  5. Jamie E. Hanrahan

    Jamie E. Hanrahan

    Brief content visible, double tap to read full content.
    Full content visible, double tap to read brief content.

    Discover more of the author’s books, see similar authors, read book recommendations and more.

    See more on the author's page
Next page

Customer reviews

4.8 out of 5 stars
432 global ratings

Customers say

Customers find the book has value in every page and is a good knowledge source. They appreciate the excellent internal OS information, expert view of the foundation upon which all Windows applications are built, and great explanations and examples.

AI-generated from the text of customer reviews

Select to learn more
Value for moneyKnowledge base
10 customers mention "Value for money"10 positive0 negative

Customers find the book has value in every page.

"whether you're a dev or sys admin or cyber guy this book has value in every page...must have for any professional tasked with a windows box" Read more

"...edition that gave us the backstory of Windows NT, but this book is a great resource. I can not wait until the second part is made public." Read more

"...Very upset with condition received. Book is definitely worth reading I did come up with my own PoCs from just the text." Read more

"Great book! Pisses me off that Part 2 of the same edition has not come out yet." Read more

5 customers mention "Knowledge base"5 positive0 negative

Customers find the book a good knowledge source. They say it provides an expert view of the foundation upon which all Windows applications are built. Readers also appreciate the great explanations and examples.

"...The book provides an expert view of the foundation upon which all windows applications are built...." Read more

"Grear info. A good knowledge source." Read more

"A wealth of knowledge." Read more

"Excellent internal OS information." Read more

Half-complete, but the only game in town
3 out of 5 stars
Half-complete, but the only game in town
I followed earlier editions of this book through various incarnations of Windows. Its main problem used to be timeliness: by the time the book was finally published, some content would be rendered obsolescent by a new version of Windows. Now it's in two volumes. (The second volume is vaporware, ostensibly scheduled for publication in April 2019).Don't look here for details about basic OS mechanisms such as spinlocks or pushlocks. Microsoft Press cleverly relegated those things to Volume Two (which hasn't even been published).That would be understandable if Volume One were filled entirely with important information about *other* basic mechanisms. It isn't. Dozens of pages are dedicated to the spewage of systems tables, whether or not all the data have special relevance to the reader [illustration: Chapter 6, p.522]. I rather wish they had put that stuff in an Appendix to Volume Two.Since this is the *only* current official guide to Windows internals, I have to give it three stars.But I don't have to like it.
Hide
Thank you for your feedback
Sorry, there was an error
Sorry we couldn't load the review

Top reviews from the United States

J. Miller
5.0 out of 5 stars The definitive guide to windows (current to Win 10)
Reviewed in the United States on November 12, 2021
Verified Purchase
whether you're a dev or sys admin or cyber guy this book has value in every page...must have for any professional tasked with a windows box
5 people found this helpful
Helpful
 Report
James Zerkle
5.0 out of 5 stars A must read for anybody who wants to understand how Windows OS works and the future of computing
Reviewed in the United States on June 3, 2017
Verified Purchase
I was very excited to have received this book. The timing of the book was so perfect as it is up to date with the latest windows 10 build. I checked my new computer and it matched exactly.

The book opens up chapter 1 with an overview of what is to come and then goes into the details chapter by chapter. I have received the earlier editions of this book and was surprised to note that this one is a much easier read. It is extremely well written and introduces a number of tools that allow you to experiment and actually follow along with the information presented. A number of references were made to volume 2 of this book but unfortunately volume 2 has not yet been published. I can't wait until I can preorder this book.

I purchased both the hard copy and the electronic versions of this book. What I truly enjoyed about the kindle edition is that it comes with highlighted reference links that allow you to click to the reference and then click to go back to where you left off reading. I am and IT specialist and my company will soon be moving to windows 10 OS; this book has given me a much more thorough understanding of how things work.

The book provides an expert view of the foundation upon which all windows applications are built. I very thankful to the Authors for all the time and effort they put into this book to make it comprehensible to a layman like myself.
25 people found this helpful
Helpful
 Report
Devin J. Lee
5.0 out of 5 stars Great book! Not for beginners
Reviewed in the United States on July 28, 2019
Verified Purchase
If you are interested in how windows works in kernel land, this is the book for you. Written by some of the most reputable windows experts, this book is not for introducing yourself to windows programming. Rather it helps take you to the next level.
7 people found this helpful
Helpful
 Report
Andrew
4.0 out of 5 stars it goes deep
Reviewed in the United States on September 22, 2024
Verified Purchase
Definite deep dive in to process and thread creation, memory management, and security features of the windows operating systems. If you want to learn how the OS operates this book is for you.
Helpful
 Report
Edmond M Richard
5.0 out of 5 stars A good book in a series of great books
Reviewed in the United States on September 1, 2017
Verified Purchase
A good book in a series of great books. None can compare to the first edition that gave us the backstory of Windows NT, but this book is a great resource. I can not wait until the second part is made public.
8 people found this helpful
Helpful
 Report
Barb Iredale
5.0 out of 5 stars Need this for work
Reviewed in the United States on April 10, 2020
Verified Purchase
I recently started working as a forensic engineer. Knowing Windows internals is valuable knowledge and this book is a valuable resource for reverse-engineering malware.
12 people found this helpful
Helpful
 Report
Blasko Smilkov
5.0 out of 5 stars Great book
Reviewed in the United States on April 27, 2020
Verified Purchase
I recommend this book to anyone who wants to know how windows works
3 people found this helpful
Helpful
 Report
DS
5.0 out of 5 stars A must have
Reviewed in the United States on March 3, 2019
Verified Purchase
A must have for anyone who troubleshoots in a Windows-based environment on a daily basis. Couldn't ask for a better reference.
5 people found this helpful
Helpful
 Report

Top reviews from other countries

Translate all reviews to English
Jadson
5.0 out of 5 stars Perfeito
Reviewed in Brazil on October 16, 2023
Verified Purchase
Chegou muito rápido, perfeito.
Report
Luís Sousa
5.0 out of 5 stars Três bon livre
Reviewed in Belgium on October 17, 2024
Verified Purchase
Cette fois j'ai reçu le livro en bon étai Amazon à emballé mieux le livre merci.
Report
Thimo
5.0 out of 5 stars Sehr informativ
Reviewed in Germany on April 18, 2024
Verified Purchase
I love this book :)
Wie schon oben erwähnt, sehr informativ, jedoch ohne Vorwissen meiner Meinung nach schwer zu folgen. Besonders Erfahrungen mit Debugging sind hier hilfreich. Für die Entwicklung oder Forensik nicht so besonders.
Customer image
Thimo
5.0 out of 5 stars Sehr informativ
Reviewed in Germany on April 18, 2024
I love this book :)
Wie schon oben erwähnt, sehr informativ, jedoch ohne Vorwissen meiner Meinung nach schwer zu folgen. Besonders Erfahrungen mit Debugging sind hier hilfreich. Für die Entwicklung oder Forensik nicht so besonders.
Images in this review
Customer image
Customer image
Report
stéphanie charoy
5.0 out of 5 stars Beau livre
Reviewed in France on July 3, 2023
Verified Purchase
Très beau livre qui a plu a destinataire. Attention livre en anglais.
Report
Jason Jordaan
5.0 out of 5 stars Foundational Knowledge for the Forensics Analysis of Windows 10 Systems
Reviewed in the United Kingdom on April 13, 2021
Verified Purchase
As a digital forensic analyst who conducts forensic analysis of many computer installed with the Windows 10 operating system, this book provides the type of in-depth technical information about the inter workings of the Windows operating system, that is crucial for a digital forensic analyst to know. This edition of Windows Internals does not disappoint as a technical reference, and provides top quality reference data. I think everyone forensic analysis working on Windows systems needs a copy of this book in their library.
Report