Please enable JavaScript.
Coggle requires JavaScript to display documents.
4.1 Configure Windows Services (4.1.1 Define a BIOS security (BIOS…
4.1 Configure Windows Services
4.1.1 Define a BIOS security
BIOS software is built into the PC, and is the first software run by a PC when powered on
The fundamental purposes of the BIOS are to initialize and test the system hardware components, and to start the boot loader or an operating system from a secondary storage device.
Known as the system BIOS or ROM BIOS is a standard defining a firmware interface.
It also takes care of essential system functions such as power management and temperature regulation.
The first invented by Gary Kildall for use in his operating system CP/M and this became what we now know as the conventional BIOS system.
In modern PC’s the BIOS contents are stored on an EEPROM chip.
An EEPROM chip or Electronically Erasable Programmable Read only memory is a type of non-volatile memory used by many electronic devices that requires small amounts of data to be stored for quick access.
The contents of an EEPROM chip can be flashed i.e. they can be overwritten with new data. This feature is also one of the reasons that BIOS chipsets are vulnerable to attack.
4.1.2 Explain Windows Registry
It contains entries and values that control the behavior of certain configurations and user preferences, as well as information for OS components and applications that operate at a low level
Most Windows applications write entries into the Windows registry during the installation process.
The Windows registry is a hierarchically structured database that is used to store data related to configuration settings, software and user preferences in a Microsoft Windows operating system (OS)
4.1.3 Use Rootkit Revealer for root kit detection
Rootkit technology is able to hide its presence from the most basic tools built into Windows such as Task Manager, firewall or anti-virus software
Although 64-bit Windows operating systems are generally safe from rootkit infection because by default the operating system only accepts signed driver files, there were previous cases where legitimate digital certificates were stolen by hackers and used to sign rootkit drivers to bypass security software and Windows defenses.
avast! ANTIROOTKIT
AVG Anti-Rootkit
Bitdefender Removal Tool / Rootkit Remover
HitmanPro
Kaspersky TDSSKiller
4.1.4 Configure windows services to disable all uneeded services
Windows is notorious for having useless features and CPU resource hogging programs/services enabled by default.
To turn off services in windows you go to Start > Run > Type: ‘services.msc’ >
.
Double Click on the service you want to alter and change the startup type to disabled or manual as directed in the list of unnecessary services