Now let’s understand this process flow in more details using the setup below: If you want to read more about kernel you can go through the Wiki Page: Kernel Now as a small introduction, any application like notepad or word will have its own user-mode processes that will be taking help of Kernel more processes in order to access the CPU, Memory or any devices that you have associated. If you want to know more about User and Kernel Mode Processes please refer to Kernel Mode vs. If you are new to this page I will recommend you to first visit: Understanding Windows Process Layer using Process Monitor (ProcMon) – Part 1 Since every application requires the help of its own files as well as the Windows DLLs to open up Windows Subsystem is a Combination of User Mode and Kernel Mode Drivers and APIs which help any application to open up. In this article we will be looking inside the Windows Process Stack and how we are able to see the Application on the screen after you open it with a mouse click using the Process Monitor Tool (ProcMon). Understanding Disk Activity using Process Monitor -Part 2 How to use Process Monitor(ProcMon) – Part 1 The Article Understanding Windows Process Stack using Process Monitor is Part 3 of the below Series:
0 Comments
Leave a Reply. |