TrainSec - Student portal
Login

  • $490 or 5 monthly payments of $99

Windows Kernel Programming 1

  • Course
  • 74 Lessons
  • Discord access

The course provides the foundations for the most common software device drivers that are useful not just in cyber security, but also other scenarios, where monitoring and sometimes prevention of operations is required.
Buy now

Contents

Introduction

Introduces the course.

Modules 1-7 are part of this course.

Modules 8-10 are part of "Windows Kernel Programming 2".

m0-Introduction.mp4
Preview
WindowsKernelProgrammingLabs.pdf
WindowsKernelProgramming.pdf
Code.zip

Windows Internals Overview

m1-01-Processes.mp4
Preview
m1-02-VirtualMemory.mp4
m1-03-VirtualMemory-2.mp4
m1-04-Threads.mp4
m1-05-Windows-Acrchitecture.mp4
m1-06-Thread-Priorities.mp4
m1-07-Thread-Scheduling.mp4
m1-08-Subsystem-APIs.mp4
m1-09-Native-API.mp4

Introduction to WinDbg

m1-10-Introduction-to-WinDbg.mp4
m1-11-Demo-WinDbg-User-Mode.mp4
m1-12-Demo-WinDbg-User-Mode-2.mp4
m1-13-Local-Kernel-Debugging.mp4
m1-14-Lab-WinDbg.mp4
m1-15-Process-Data-Structures.mp4
m1-16-Manipulating-Kernel-Memory.mp4

Handles and Objects

m1-17-Objects-And-Handles.mp4
m1-18-More-Kernel-Objects.mp4

The I/O System

m2-01-IO-System-Components.mp4
m2-02-Accessing-Objects.mp4
m2-03-NtOpenFile.mp4
m2-04-IO-APIs.mp4
m2-05-Kernel-Device-Drivers.mp4

Device Driver Basics

m3-01-Driver-Basics.mp4
m3-02-String-And-Memory-APIs.mp4
m3-03-ExAllocatePool2.mp4
m3-04-Deploying-And-Testing.mp4
m3-05-Registry.mp4
m3-06-Tools-Questions-And-Lab.mp4
m3-07-Asserts-and-Traces.mp4
m3-08-Object-Attributes.mp4
m3-09-Driver-and-Devices.mp4

The Booster Driver

m3-10-Booster-Driver-Client.mp4
m3-11-Booster-Driver-1.mp4
m3-12-Booster-Driver-2.mp4
m3-13-Booster-Deploy-and-Test.mp4
m3-14-Remote-Kernel-Debugging.mp4
m3-15-Odds-and-Ends.mp4

The I/O Request Packet (IRP)

m4-01-IRP-Introduction.mp4
m4-02-Completing-IRP.mp4
m4-03-Referencing-User-Buffers.mp4
m4-04-DeviceIoControl-Buffers.mp4
m4-05-Labs-Solutions.mp4
m4-06-QandA.mp4

Interrupts and Exceptions

m5-01-Interrupts-and-IRQLs.mp4
m5-02-DPCs.mp4
m5-03-Exceptions.mp4
m5-04-BSOD.mp4

Synchronization

m5-05-Thread-Synchronization.mp4
m5-06-Mutex.mp4
m5-07-QandA-Driver-Signing.mp4
m5-08-Mutex-2.mp4
m5-09-Using-RAII.mp4
m5-10-APCs.mp4
m5-11-Fast-Mutex.mp4
m5-12-Semaphore.mp4
m5-13-Events.mp4
m5-14-Executive-Resource.mp4
m5-15-Spin-Locks.mp4

Threads and Timers

m5-16-Threads.mp4
m5-17-Work-Items.mp4
m5-18-Timers.mp4

Process and Thread Monitoring

m6-01-Process-Monitoring.mp4
m6-02-Linked-Lists.mp4
m6-03-Thread-and-Image-Callbacks.mp4
m6-04-Lab-ProcMon.mp4
m6-05-Lab-ProcMon-2.mp4

Object and Registry Notifications

m7-01-Object-Notifications.mp4
m7-02-Registry-Notifications.mp4
m7-03-Lab-ProcMon-3.mp4