Please use this identifier to cite or link to this item: https://hdl.handle.net/10356/162393
Title: Demystifying Windows Prefetch (solving real world security problems: hacking and protection)
Authors: Yeoh, Jun Yi
Keywords: Engineering::Computer science and engineering::Software::Operating systems
Issue Date: 2022
Publisher: Nanyang Technological University
Source: Yeoh, J. Y. (2022). Demystifying Windows Prefetch (solving real world security problems: hacking and protection). Final Year Project (FYP), Nanyang Technological University, Singapore. https://hdl.handle.net/10356/162393
Project: SCSE20-0706
Abstract: The purpose of this project is to document the default behaviour of the Microsoft Windows Prefetecher and Superfetch components under the lens of digital forensics. This project covers the various limitations of the Windows Prefetecher which limits its reliability and capabilities as a forensic artifact. This paper will cover the default settings bundled with various Windows editions spanning Windows 10 and 11. Next, various configuration options for Prefetcher, Superfetch and the Sysmain Service are evaluated along with their effects on the creation and retention of prefetch files. Lastly, it covers the various test cases attempted to circumvent the Prefetcher component aiming to recreate techniques attackers may employ.
URI: https://hdl.handle.net/10356/162393
Fulltext Permission: restricted
Fulltext Availability: With Fulltext
Appears in Collections:SCSE Student Reports (FYP/IA/PA/PI)

Files in This Item:
File Description SizeFormat 
FYP Project.pdf
  Restricted Access
305.14 kBAdobe PDFView/Open

Page view(s)

30
Updated on Nov 30, 2022

Download(s)

2
Updated on Nov 30, 2022

Google ScholarTM

Check

Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.