Please use this identifier to cite or link to this item:
https://hdl.handle.net/10356/162393| Title: | Demystifying Windows Prefetch (solving real world security problems: hacking and protection) | Authors: | Yeoh, Jun Yi | Keywords: | Engineering::Computer science and engineering::Software::Operating systems | Issue Date: | 2022 | Publisher: | Nanyang Technological University | Source: | Yeoh, J. Y. (2022). Demystifying Windows Prefetch (solving real world security problems: hacking and protection). Final Year Project (FYP), Nanyang Technological University, Singapore. https://hdl.handle.net/10356/162393 | Project: | SCSE20-0706 | Abstract: | The purpose of this project is to document the default behaviour of the Microsoft Windows Prefetecher and Superfetch components under the lens of digital forensics. This project covers the various limitations of the Windows Prefetecher which limits its reliability and capabilities as a forensic artifact. This paper will cover the default settings bundled with various Windows editions spanning Windows 10 and 11. Next, various configuration options for Prefetcher, Superfetch and the Sysmain Service are evaluated along with their effects on the creation and retention of prefetch files. Lastly, it covers the various test cases attempted to circumvent the Prefetcher component aiming to recreate techniques attackers may employ. | URI: | https://hdl.handle.net/10356/162393 | Schools: | School of Computer Science and Engineering | Fulltext Permission: | restricted | Fulltext Availability: | With Fulltext |
| Appears in Collections: | SCSE Student Reports (FYP/IA/PA/PI) |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| FYP Project.pdf Restricted Access | 305.14 kB | Adobe PDF | View/Open |
Page view(s)
163
Updated on Dec 2, 2023
Download(s)
10
Updated on Dec 2, 2023
Google ScholarTM
Check
Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.