SECURITY ASPECTS OF THE WINDOWS 7 OPERATING SYSTEM WITH RESPECT TO MALWARE AND EXPLOIT DEVELOPMENT

Abstract

Windows 7 is the most widely used operating system for desktop and laptop users. This widespread usage can also risk compromising a large number of computer users even if a single vulnerability is exploited for the Windows 7 operating system. Various intrusion and hacking attempts have already been noticed since the launch of Windows 7, in order to gain access, manipulate and in ltrate data from compromised computers by exploiting vulnerabilities and using social-engineering techniques. Since the usage of the Internet has become a need of users to accomplish their day-to-day tasks, the built-in security features of Windows 7 alone cannot be relied upon for safety against malwares. The focus of this thesis was to determine a security solution that would prevent compromise of integrity and con dentiality of system and its data. For this purpose, as a rst step, secu- rity status of Windows 7 operating system was analyzed using system and network analyzer tools. A set of di erent system and security con gurations were made for this analysis, so as to identify the limitations and risks from vulnerabilities and other security components. Af- ter identi cation of such critical components, various freely available security tools, controls and Windows provided security components have been analyzed for removing and providing protection against malware threats. For this, security tools and controls had been installed and analyzed in a virtual environment and on the basis of their comparative analysis, system security controls have been recommended that should be installed and con gured properly in order to maintain the overall integrity and con dentiality of system and its data.