Course Description
Learn to identify an intruder's footprints and to properly gather the
necessary evidence to prosecute using many of today's top tools of the forensic
trade, including software, hardware, and specialized techniques. The need for
businesses to become more efficient and integrated with one another as well as
with the home user has given way to a new type of criminal, the cybercriminal.
It is no longer a question of if your organization will be hacked or
compromised, but rather a question of when. Today's battles between
corporations, governments, and countries are no longer fought only in the
typical arenas of boardrooms or battlefields using physical force. Today's
battlefield is in the technical realm, which ties into almost every facet of
modern day life. If you or your organization requires the knowledge or skills to
identify, track, and prosecute cybercriminals, this is the course for you.
This course includes 1-year access to our 50-book Online Security Reference
Library with titles specially selected to reinforce course concepts.
Agenda
Day 1
- Computer Forensics in Today's World
- Law And Computer Forensics
- Computer Investigation Process
- Computer Security Incident Response Team
- Computer Forensic Laboratory Requirements
Day 2
- Understanding File Systems and Hard Disks
- Windows Forensics
- Linux and Macintosh Boot Processes
- Linux Forensics
- Data Acquisition and Duplication
Day 3
- Recovering Deleted Files
- Image Files Forensics
- Steganography
- Computer Forensic Tools
- Application Password Crackers
Day 4
- Investigating Logs
- Investigating Network Traffic
- Router Forensics
- Investigating Web Attacks
- Tracking E-mails and Investigating E-mail Crimes
Day 5
- Mobile and PDA Forensics
- Investigating Trademark and Copyright Infringement
- Investigative Reports
- Becoming an Expert Witness
- Forensics in Action
Audience
- Experience with Windows and/or UNIX/Linux operating systems
-
Knowledge of TCP/IP and networking
-
Security+ certification is recommended
-
Certified Ethical Hacker certification is strongly recommended