Computer Forensics is the specialized and fast growing field that helps corporations defend against cyber crime both from inside and outside the organization. Forensic investigators detect the extent of a security breach, recover lost data, determine how an intruder got past security mechanisms and, potentially, identify the culprit.
The 5-Day Digital Forensics Investigation course teaches you how to identify the common, and not so common, strategies of attackers. It combines lectures, demonstrations, and extensive hands-on labs that allow students to carry out critical forensic activities in a safe, isolated environment. This includes identifying and handling digital evidence, preserving and analyzing file systems, recovering deleted e-mail, cracking passwords, and using other techniques essential to preserving evidence and quickly restoring a company's productivity. This course covers Windows, UnixUNIX, and Linux forensics procedures, and methods of recovering data for analysis.
It is important to know how to properly interact with law enforcement agencies during investigations and the laws that define how these processes should be carried out; thus, emphasis is on current law. You learn how to create an in-house incident response program and team, how to preserve forensic evidence, and how to communicate and coordinate with law enforcement agencies. These steps will help save money, time, and possibly a company's reputation, by decreasing the recovery time after an attack.
Class Schedule
| Day 1 – Intro Day |
| |
1. Intro to Forensics |
| |
2. Data Forensics Basics |
| |
3. Data Forensics Law |
| |
4. Network Forensics |
| |
|
| Day 2 – Preparing for Success Day |
| |
5. Incident Response |
| |
6. Processing the scene |
| |
7. Evidence Acquisition / Chain of Custody |
| |
8. Building a Case |
| |
|
| Day 3 – Basic Analysis Day |
| |
9. OS Specific Analysis |
| |
10. Basic Data Analysis |
| |
11. Email Analysis |
| |
12. Embedded Data, Hidden and Encrypted Data |
| |
|
| Day 4 – Advance Analysis/Case Prep Day |
| |
13. Malware Dissection and Analysis |
| |
14. Forensics Exercise |
| |
15. Expanding the Case |
| |
16. Preparing for Court |
| |
|
| Day 5 – Review/Exam Day |
| |
17. Defending your Network |
| |
18. Final Review |
| |
19. Final Exam (associate) |
| |
20. Final Exam (pro) |
The Course Includes
Courseware including:
- Printed copy of the Instructor’s presentation complete with graphics and extensive details
- Professionally developed graphics and 3-D graphics that enhance conceptual understanding of complex concepts
- Extensive Hands-On Labs that walk the student through critical aspects of Digital Forensics Investigator
- Microsoft™ based Digital Forensics Investigation toolkit
- Linux™ based Digital Forensics Investigation toolkit
Review materials including:
- A final practice exam of 200+ questions, answers and explanations
- Multiple exercises for after class review and exercise of concepts learned in class
- Key Terminology definitions and 20 questions and answers for each module
- A Digital Forensics Investigation cram session prior to the certification exam
Certification exams
LS Digital Forensics Investigation Associate (LSDFIA) Certification Exam
LS Digital Forensics Investigation Pro (LSDFIP) Certification Exam
|
View
Schedule