Computer Forensics Training
Duration: 5 days
Take your system-based forensic knowledge onto the wire. Incorporate network evidence into your investigations, provide better findings, and get the job done faster.
Forensic casework that does not include a network component is a rarity in todays environment. Performing disk forensics will always be a critical and foundational skill for this career, but overlooking the network component of today’s computing architecture is akin to ignoring security camera footage of a crime as it was committed. Whether you handle an intrusion incident, data theft case, or employee misuse scenario, the network often has an unparalleled view of the incident. Its evidence can provide the proof necessary to show intent, or even definitively prove that a crime actually occurred.
The rate of fraud, abuse and downright criminal activity on IT systems by hackers, contractors and even employees are reaching alarming rates. Corporate IT, Law Enforcement and Information Security Pros are often required to perform computer forensics duties on their jobs. In terms of job growth, nothing beats computer forensics as a career, and no one can beat InfoSec Institute as the best place to learn from a computer forensics training expert.
Computer crime is here to stay. Computer Forensics Specialists are needed by today’s companies to determine the root cause of a hacker attack, collect evidence legally admissible in court, and protect corporate assets and reputation. The best way to become a forensics expert is to attend a training session with a computer forensics training expert.
- Click on a Learning Path for a Detailed Description
- Reverse Engineering Training Advanced
- Reverse Engineering Malware Overview Training
- Application Security Training
After completing this course, attendees will be able to:
After attending Computer Forensics Training, you wil be able to perform a legally admissible forensics investigation and the skills to run the investigation properly.
This hands-on computer forensics training offers practical experience in a wide array of computer forensics situations that are applicable to the real world. Learn everything relating to computer forensics — from how to establish a proper chain of custody that is admissible in a court of law to recovering files from intentionally damaged media
- Computer Forensics Training with open source tools
- Overview of Computer Crime
- Preparing sterile examination media
- Acquisition, collection and seizure of magnetic media.
- Recovering deleted data from a cell phone
- Digital Camera Computer Forensics
- PDA Computer Forensics Documenting a “Chain of Custody”
- Understanding Microsoft Windows from a forensics point of view
- Working with NTFS Combing Partition table and boot record
- Investigating The Master File Table (MFT)
- Linux/Unix computer forensics
- Investigating data streams
- File storage dates and times
- File deletion/recovery
- Recovering Internet Usage Data
- Recovering: Swap Files/Temporary Files/Cache Files
- Preservation and safe handling of original media
- Making bitstream copies of original media
- Common data hiding techniques
- Examining CD-ROM media
- Carving out files “hidden” in unallocated disk space
- Word document forensics and password cracking
- Issues when presenting data in court
- The marking, storage and transmittal of evidence.
- Demonstration of tools such as Encase Forensic Edition, Paraben, X-Ways Forensic Addition, Forensic TookKit (FTK), Linux dd, etc.