{"product_id":"windows-security-internals-a-deep-dive-into-windows-authentication-authorization-and-auditing-9781718501980","title":"Windows Security Internals: A Deep Dive Into Windows Authentication, Authorization, and Auditing","description":"\u003cb\u003ePower up your Windows security skills with expert guidance, in-depth technical insights, and dozens of real-world vulnerability examples from Google Project Zero's most renowned researcher! \u003c\/b\u003e\u003cp\u003e\u003c\/p\u003eLearn core components of the system in greater depth than ever before, and gain hands-on experience probing advanced Microsoft security systems with the added benefit of PowerShell scripts. \u003cp\u003e\u003c\/p\u003e\u003ci\u003eWindows Security Internals\u003c\/i\u003e is a must-have for anyone needing to understand the Windows operating system's low-level implementations, whether to discover new vulnerabilities or protect against known ones. Developers, devops, and security researchers will all find unparalleled insight into the operating system's key elements and weaknesses, surpassing even Microsoft's official documentation. \u003cp\u003e\u003c\/p\u003eAuthor James Forshaw teaches through meticulously crafted PowerShell examples that can be experimented with and modified, covering everything from basic resource security analysis to advanced techniques like using network authentication. The examples will help you actively test and manipulate system behaviors, learn how Windows secures files and the registry, re-create from scratch how the system grants access to a resource, learn how Windows implements authentication both locally and over a network, and much more. \u003cp\u003e\u003c\/p\u003eYou'll also explore a wide range of topics, such as: \u003cp\u003e\u003c\/p\u003e\u003cul\u003e\n\u003cli\u003eWindows security architecture, including both the kernel and user-mode applications\u003c\/li\u003e\n\u003cli\u003eThe Windows Security Reference Monitor (SRM), including access tokens, querying and setting a resource's security descriptor, and access checking and auditing\u003c\/li\u003e\n\u003cli\u003eInteractive Windows authentication and credential storage in the Security Account Manager (SAM) and Active Directory\u003c\/li\u003e\n\u003cli\u003eMechanisms of network authentication protocols, including NTLM and Kerberos\u003c\/li\u003e\n\u003c\/ul\u003e\u003cbr\u003eIn an era of sophisticated cyberattacks on Windows networks, mastering the operating system's complex security mechanisms is more crucial than ever. Whether you're defending against the latest cyber threats or delving into the intricacies of Windows security architecture, you'll find \u003ci\u003eWindows Security Internals\u003c\/i\u003e indispensable in your efforts to navigate the complexities of today's cybersecurity landscape.\u003cbr\u003e\u003cbr\u003e\u003cbr\u003e\u003cb\u003eAbout the Author\u003c\/b\u003e\u003cbr\u003e\u003cb\u003eJames Forshaw\u003c\/b\u003e is a renowned computer security expert on Google's Project Zero team. In his more than 20 years of experience analyzing and exploiting security issues in Microsoft Windows and other products, he has discovered hundreds of publicly disclosed vulnerabilities in Microsoft platforms. Others frequently cite his research, which he presents in blogs, on the world stage, or through novel tooling, and he has inspired numerous researchers in the industry. When not breaking the security of other products, James works as a defender, advising teams on their security design and improving the Chromium Windows sandbox to secure billions of users worldwide. He's also the author of \u003ci\u003eAttacking Network Protocols \u003c\/i\u003e(No Starch Press)\u003cbr\u003e","brand":"No Starch Press","offers":[{"title":"Default Title","offer_id":50625936556306,"sku":"9781718501980","price":43.99,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0831\/4771\/8930\/files\/img_289babc6-1da3-4639-aee8-7b3473439a07.jpg?v=1732645181","url":"https:\/\/surprise-castle.myshopify.com\/products\/windows-security-internals-a-deep-dive-into-windows-authentication-authorization-and-auditing-9781718501980","provider":"Surprise Castle","version":"1.0","type":"link"}