The term cyber-crime no longer refers only to hackers and other external attackers. The ubiquity of computers as a communications tool means that the role of computer forensics - the practice of examining historical activity on electronic devices when someone suspects inappropriate or illegal activity - will continue to grow in importance. These days, each and every case of fraud involves a very strong element of computer-based evidence. Hence, forensic tools and the professionals with the qualifications to use them have also become critical resources in every major organization
Computer Forensics is the art and science of applying computer science to aid the legal process. Computer forensics requires specialized expertise and tools that goes above and beyond the normal data collection and preservation techniques available to end-users or system support personnel.
Computer Forensics is the application of computer investigation and analysis techniques in the interests of determining potential legal evidence. Securing and analyzing electronic evidence is a central theme in an ever-increasing number of conflict situations and criminal cases.
This process often involves the investigation and examination of data that resides on digital media such as data storage devices, hard drives, portable data devices (USB Drives, External drives, Micro Drives and many more).
Electronic evidence is critical in the following situations: Computer break-ins, Possession of pornography, Breach of contract, Industrial espionage, E-mail Fraud, Bankruptcy, Disputed dismissals, Web page defacements, Theft of company documents etc.
About this workshop
This workshop will give participants the necessary skills to identify an intruder's footprints and to properly gather the necessary evidence to prosecute. Many of today's top tools of the forensic trade will be taught during this course, including software, hardware and specialized techniques. The need for businesses to become more efficient and integrated with one another, as well as the home user, has given way to a new type of criminal, the "cyber-criminal." It is no longer a matter of "will your organization be comprised (hacked)?" but, rather, "when?" Today's battles between corporations, governments, and countries are no longer fought only in the typical arenas of boardrooms or battlefields using physical force. Now the battlefield starts in the technical realm, which ties into most every facet of modern day life. If you or your organization requires the knowledge or skills to identify, track, and prosecute the cyber-criminal, then this is the course for you.
This 5 day highly interactive course will help participants have hands on understanding and experience in Incident Response & Computer Forensics and prepare for EC-Council Computer Hacking Forensic Investigator exam 312-49.
Benefits
The EC-Council's Computer Hacking Forensic Investigator has emerged as one of today's most sought-after certifications in Computer Forensics. It serves as a significant step towards a career in incident response & management.
There are many reasons to achieve a CHFI certification:
- Prepare yourself to respond appropriately to incidents
- Understand how to handle a computer forensic investigation
- Understand how to create digital evidence
- Bring computer forensic expertise to your current occupation
- Become more marketable in a highly competitive environment
Therefore this workshop will prepare you to take the first step into the world of digital forensics and give you a better understanding of how to handle incidents and the various tools which are used to gather digital evidence.
Who should attend
This course will significantly benefit those who would be responsible for handling computer security related incidents.
- Police and other law enforcement personnel
- Cyber crime cell
- Defense and Military personnel
- E-Business Security professionals
- Legal professionals
- Banking professionals
- Insurance professionals
- IT Managers
- Information Security Managers
- Security Consultants
- Security Architects
- Security Specialists
- System Administrators
- IS Auditors
Anyone aspiring to get a better understanding of Computer Forensics would benefit from this course. It is recommended to complete CEH prior to attending this course.
Course Outline
CHFI curriculum consists of instructor-led training and self-study modules. The instructor will provide the details of self-study modules to the students at the beginning of the class.
Module 01: Computer Forensics in Today’s World
Module 02: Computer Forensics Investigation Process
Module 03: Searching and Seizing of Computers
Module 04: Digital Evidence
Module 05: First Responder Procedures
Module 06: Incident Handling
Module 07: Computer Forensics Lab
Module 08: Understanding Hard Disks and File Systems
Module 09: Digital Media Devices
Module 10: CD/DVD Forensics
Module 11: Windows Linux Macintosh Boot Process
Module 12: Windows Forensics I
Module 13: Windows Forensics II
Module 14: Linux Forensics
Module 15: Mac Forensics
Module 16: Data Acquisition and Duplication
Module 17: Recovering Deleted Files and Deleted Partitions
Module 18: Forensics Investigations Using AccessData FTK
Module 19: Forensics Investigations Using Encase
Module 20: Steganography
Module 21: Image Files Forensics
Module 22: Audio file forensics
Module 23: Video File Forensics
Module 24: Application Password Crackers
Module 25: Log Capturing and Event Correlation
Module 26: Network Forensics and Investigating Logs
Module 27: Investigating Network Traffic
Module 28: Router Forensics
Module 29: Investigating Wireless Attacks
Module 30: Investigating Web Attacks
Module 31: Investigating DoS Attacks
Module 32: Investigating Virus, Trojan, Spyware and Rootkit Attacks
Module 33: Investigating Internet Crimes
Module 34: Tracking Emails and Investigating Email Crimes
Module 35: PDA Forensics
Module 36: Blackberry Forensics
Module 37: iPod and iPhone Forensics
Module 38: Cell Phone Forensics
Module 39: USB Forensics
Module 40: Printer Forensics
Module 41: Investigating Corporate Espionage
Module 42: Investigating Computer Data Breaches
Module 43: Investigating Trademark and Copyright Infringement
Module 44: Investigating Sexual Harassment Incidents
Module 45: Investigating Child Pornography Cases
Module 46: Investigating Identity Theft Cases
Module 47: Investigating Defamation over Websites and Blog Postings
Module 48: Investigating Social Networking Websites for Evidences
Module 49: Investigation Search Keywords
Module 50: Investigative Reports
Module 51: Becoming an Expert Witness
Module 52: How to Become a Digital Detective
Module 53: Computer Forensics for Lawyers
Module 54: Law and Computer Forensics
Module 55: Computer Forensics and Legal Compliance
Module 56: Security Policies
Module 57: Risk Assessment
Module 58: Evaluation and Certification of Information Systems
Module 59: Ethics in Computer Forensics
Module 60: Computer Forensic Tools
Module 61: Windows Based Command Line Tools
Module 62: Windows Based GUI Tools
Module 63: Forensics Frameworks
Module 64: Forensics Investigation Templates
Module 65: Computer Forensics Consulting Companies