Rating: 
Summary: Really unique effort
Review: This is not a regular text book about the Undocumented Windows NT. It does not tell anything about the system components or even how does the system works. I do not think this was by any means the target of the writer. It is clear to me that the writer spent lots of his time reverse engineering the NT native system APIs and in his book he is providing us with the outcomes of his work.
If you are looking for a book about NT internals then you need to look for some other books. However, if you are a system engineer who spends most of his time doing kernel debugging using SoftIce or Microsoft Kernel Debugger then this book is definitely for you. If you know how to break at each NT native API using SoftIce (or Microsoft KD) and dump the parameters passed to the function then this book is an invaluable help to you. Otherwise, this book is not for you.
Finally, this is the only available text book to the public that has published the prototype of most of NT native APIs. If you need to know those APIs then this book is for you. However, you need to consider the fact that maybe there are some mistakes so you need to verify each API prototype yourself.
Rating:
Summary: Groundbreaking Book -- A MUST HAVE
Review: This is the first, and only, book to document the previously undocumented native NT API. You wanna know how Microsoft implements the functionality in certain utilities? It's in here. The book is technically accurate and solid. While the book does contain a few examples, this book is NOT a tutorial. Its title precisely reflects its approach: This is a REFERENCE book. Thus, it will be most appropriate and easily used by advanced software developers, as well as those already knowledgeable about NT system internals. EVERY SINGLE native NT system service is covered. This book is awesome, groundbreaking... a true must have for any serious NT system programmer.A more complete review of this book appears in the Jan/Feb 2000 edition of The NT Insider.
Rating:
Summary: The missing DDK chapter
Review: This is the missing chapter of the Windows 2000 device driver kit! Why doesn't Microsoft publish such a book? It documents ALL native API functions and relevant structures very accurately. The author must have spent several months of disassembly and reverse engineering. The book is a must-have reference for anyone writing NT/Win2K system-level software, like debuggers, spying/monitoring utilities, system info tools, drivers, and the like. However, keep in mind that it's a REFERENCE in its purest sense. Although there is some interspersed sample code, it's NOT a tutorial. You need to know already what you're doing before you will benefit from this book.
| 
