Похожие презентации:
Practice -1. Installing Windows Server 2022. Windows System Administration
Practice -1. Installing Windows Server 2022. Windows System Administration
Operating System Concepts. Chapter 1: Introduction
Operating System Concepts. Chapter 1: Introduction
Operating System Concepts – 10h Edition (сhapter 1)
Operating System Concepts – 10h Edition (сhapter 1)
Windows crash dump analysis
Windows crash dump analysis
Defeating Windows memory forensics
Defeating Windows memory forensics
Operating - System Structures (сhapter 2)
Operating - System Structures (сhapter 2)
Processes. Processes & Threads. (Chapter 3)
Processes. Processes & Threads. (Chapter 3)
Optimizing device drivers for terminal server’s plug and play device redirection framework
Optimizing device drivers for terminal server’s plug and play device redirection framework
VMware vSphere basics
VMware vSphere basics
Oracle Clusterware. Installation and configuration
Oracle Clusterware. Installation and configuration

Windows core concepts administrative rights. (Lesson 1)

1.

WINDOWS CORE CONCEPTS
ADMINISTRATIVE RIGHTS
Administrative rights
User rights
Effective administrative control
User Account Control (UAC)
Silently
Prompt for Consent
Prompt for Credentials
Access tokens for logon sessions
L1
P1

2.

WINDOWS CORE CONCEPTS
PROCESSES, JOBS & THREADS
L1
P2
Each process contains:
Each thread contains:
PID
TID
At least one thread
The contents of a set of CPU
Private Virtual address space
registers
An executable program
Kernel mode stack
Handles
User mode stack
Access token
Thread-local storage (TLS)
Access token [optional]

3.

WINDOWS CORE CONCEPTS
VIRTUAL MEMORY
Mapping
Paging
Increaseuserva boot option
Address Windowing Extension (AWE)
Typical address space for 32-bit – 2 GB + 2 GB
Typical address space for 64-bit – 8 TB + 8 TB
L1
P3

4.

WINDOWS CORE CONCEPTS
KERNEL MODE & USER MODE
L1
P4
Kernel mode highlights:
User mode highlights:
Designated for OS code (system
designated for user applications
services & device drivers)
Indirect access to resources
Access to all system memory and
through system service calls
all CPU instructions
Virtual private address space
Single virtual address space
Isolated execution for each process
Driver-signing mechanism
Kernel mode code signing (KMCS)

5.

WINDOWS CORE CONCEPTS
REGISTRY
Viewing and changing Registry
Registry Usage
Registry Data Types
REG_DWORD
REG_BINARY
REG_SZ
Registry Logical Structure
L1
P5

6.

WINDOWS CORE CONCEPTS
OBJECTS & HANDLES
Objects
Providing human-readable names for system resources
Sharing resources and data among processes
Protecting resources from unauthorized access
Reference tracking
Difference between objects and ordinary data
Handles
L1
P6

7.

WINDOWS CORE CONCEPTS
CALL STACKS & SYMBOLS
What is a call stack?
module!function+offset e.g.
crypt32!CryptEncryptMessage+0x9f
What are symbols?
Full (Private) symbol files
Public symbol files
Configuring symbols
DBGHelp.dll path
Symbols path
srv*c:\symbols*https://msdl.microsoft.com/download/symbols
L1
P7

8.

WINDOWS CORE CONCEPTS
WINDOWS SESSIONS, STATIONS & DESKTOPS
Overview of Sessions, Window
stations and Desktops hierarchy
Remote desktop services sessions
RDS session = TS session
Session0 != Console session
Fast user switching
Windows stations
Desktops
L1
P8
English     Русский Правила