Kernel and User Mode Boundary
How CPU privilege, syscalls, traps, exceptions, address spaces, handles, descriptors, and schedulers separate application code from kernel authority.
OS internals
Kernel/user boundary, executable loading, memory, security, drivers, and platform differences across Windows, Linux, and macOS.
How CPU privilege, syscalls, traps, exceptions, address spaces, handles, descriptors, and schedulers separate application code from kernel authority.
Program startup from executable mapping through dynamic linker work, relocations, TLS, runtime initialization, and entry-point transfer.
Security from the low-level engineer viewpoint: permissions, tokens, capabilities, sandboxing, code signing, exploit mitigations, and kernel hardening.
Device access, IO queues, kernel modules, driver models, DMA risk, user/kernel buffers, and practical debugging boundaries.
Win64 ABI, PE/COFF, SEH, PDB, ETW, WinDbg, NT boundary, drivers later.
ELF, System V ABI, syscalls, signals, ptrace, perf, kernel entry, eBPF edges.
Mach-O, dyld, LLDB, Apple ARM64/x86-64 ABI, universal binaries, Instruments.