[raxen]

Igor's site has a lot of great items....

[R00tKit]

http://viralpatel.net/taj/operating-system-tutorial.php

[0xFFFF]

http://www.reconstructer.org/papers.html

Some papers about malware analysis.

[R00tKit]

http://www.osdever.net/papers/
http://www.osdever.net/tutorials/

[AronPX]

Windows UEFI startup – A technical overview
https://news.saferbytes.it/analisi/2013 ... -overview/

A Tale of One Software Bypass of Windows 8 Secure Boot
https://media.blackhat.com/us-13/us-13- ... Slides.pdf

DETECTING OSX AND WINDOWS BOOTKITS WITH RDFU
http://www.reversinglabs.com/sites/defa ... 202013.pdf

Using The Windows 8 Platform crypto Provider and associated TPM
http://tiw2013.cse.psu.edu/slides/Using ... 4.2013.pdf

[rkhunter]

"All about the RPC, LRPC, ALPC, and LPC in your PC" @aionescu Syscan 2014

http://www.syscan.org/index.php/downloa ... yourPC.zip

[R00tKit]

http://www.nondot.org/sabre/os/articles/

[Websly]

Some bookmarks I find useful that haven't been posted yet.

Symantec anti-debug reference:
http://www.symantec.com/connect/article ... -reference

Windows Internals crash course:
http://trapframe.org/just-enough-kernel-to-get-by/
http://trapframe.org/just-enough-kernel-to-get-by-2/


Two more links that are not articles, but some of you might find them useful:

Asm instruction set reference:
http://faydoc.tripod.com/cpu/index_a.htm

File signature references:
http://www.garykessler.net/library/file_sigs.html

[p4r4n0id]

Hi,

https://quequero.org/2014/10/kaspersky- ... -analysis/

Enjoy,

[Snakebyte]

x86 Disassembly: Exploring the relationship between C, x86 Assembly, and Machine Code:
http://upload.wikimedia.org/wikipedia/c ... sembly.pdf