OS Internals for Security Professionals is a foundational course that exposes students to the underpinnings of modern desktop operating systems and the components that are most vulnerable to attack. It covers the principles of process, memory, and I/O management that drive all modern operating systems. It also includes hands-on labs to discover how they are implemented in Windows and Linux. After attending this course, students will be able to describe how the components of operating systems work and interact, use built-in tools to analyze these components, and have an excellent foundation for courses in malware analysis, intrusion analysis, and penetration testing.
- Describe how modern desktop operating systems function
- Explain the principles of process, memory, and I/O management and distinguish the methods used across common operating systems
- Identify and monitor the standard boot processes of Windows and Linux systems
- Use trusted command-line and GUI-based tools to ascertain the status of a running system
- Retrieve and edit a host’s network configuration
- Perform basic user and group management tasks
- Describe the foundational security mechanisms in Windows and Linux systems