Ανίχνευση ενδείξεων παραβίασης λειτουργικών συστημάτων Windows 8
Tracing security breaches in Windows 8 machines
Nowadays, malicious software, or malware as it is better known, poses a significant threat to both everyday users, as well as companies and organisations. We the term malware we describe every software that is built with the intention to invade the integrity, availability, and confidential nature of a computer’s files and cause damage to the system. The following thesis is an exploration of the available malware tracking methods, and the subsequent development of a malware tracking and identifying application. The application is designed with the purpose of assisting digital forensics researchers to focus their malware tracking efforts on particular files, and reduce significantly the amount of computer data they have to analyse in a non-automated way. It also supports capabilities for analysing volatile data, using already existent tools. The experimental assessment took place on a Windows 8.1 software, which was infected by commonly used malwares prior to testing, in order to examine the efficiency of the application.