Process Internals
Every window process is represented by the process executive structure called
EPROCESS.EPROCESScontains reference to one more internal structures such asETHREADwhich represents the threads inside the process.All process structures resides in the system address space except the
Process Environment Block (PEB)which resides in the user process address space.
Last updated