Windows Internals » TrainSec

Category: Windows Internals

Windows Performance Analyzer

Introduction to the Windows Performance Analyzer

Pavel Yosifovich November 10, 2024

Hi, and welcome to this video about an introduction to the Windows Performance Analyzer. We’re

Dive in

Sharing Kernel Objects by Name – Perks and Perils

Pavel Yosifovich September 13, 2024

Some Windows kernel object types can have string-based names, which is one way such objects

Dive in

Keyboard Hook with Image File Execution Options

Pavel Yosifovich August 25, 2024

Keyboard hooking using Image File Execution Options and pretending to be a debugger.

Dive in

Process Handles and Identifiers

Maximum Handles in a process

Pavel Yosifovich August 13, 2024

Ever wondered how many handles you can create in a process? Each process has its

Dive in

CrowdStrike and the Formidable BSOD

Pavel Yosifovich July 21, 2024

Millions of machines around the world crashed a few days ago, showing the dreaded “Blue

Dive in

Building a Process Tree

Pavel Yosifovich July 15, 2024

In Windows, every process is associated with a parent process, usually the one created it.

Dive in

“Application Types” on Windows

Pavel Yosifovich July 8, 2024

There are many processes running on a typical Windows system – here are some of

Dive in

Code Injection with Image File Execution Options

Pavel Yosifovich July 8, 2024

A well-known features of Windows is the Image File Execution Options registry key located in

Dive in