Cybercrime and Forensic Investigation
Computer forensic investigation is a detailed methodological approach to computer forensics and evidence analysis. It is a comprehensive course covering major forensic investigation scenarios that enable participants to acquire hands-on experience on various forensic investigation techniques and standard tools necessary to successfully carry-out a computer forensic investigation. Battles between corporations, governments, and countries are no longer fought using physical force. Cyber war has begun and the consequences can be seen in everyday life. If you or your organization requires the knowledge or skills to identify, track, and prosecute the cybercriminals, then this is the course for you.
Computer forensics is simply the application of computer investigation and analysis techniques in the interests of determining potential legal evidence. Evidence might be sought in a wide range of computer crime or misuse, including but not limited to theft of trade secrets, theft of or destruction of intellectual property, and fraud. Computer forensic investigators can draw on an array of methods for discovering data that resides in a computer system, or recovering deleted, encrypted, or damaged file information.
Police and other law enforcement personnel,defense and military personnel, e-business security professionals, systems administrators, legal professionals, banking, insurance and other professionals, government agencies, it managers and auditors
At the end of the course, participants will be able to:
- Identify an intruder’s footprints and to properly gather the necessary evidence to prosecute;
- Explain forensic trade, including software, hardware and specialized techniques;
- Describe the process of investigating cybercrime, Laws involved, and the details in obtaining a search warrant;
- Explain different types of respondent toolkit, securing and evaluating electronic crime; scene, conducting preliminary interviews, document electronic crime scene, collecting and preserving electronic evidence, packaging and transporting electronic evidence and reporting the crime scene;
- Recover deleted files and deleted partitions in Windows, Mac OS X, and Linux;
- Describe the process involved in forensic investigation using Access Data FIK and Encase Stenography and its techniques, steganlysis, and image file Forensics;
- Explain password cracking concepts, tools, types of password attacks and how to investigate password protected file breach;
- Differentiate types of log capturing techniques, log management, time synchronization, log capturing tools;
- Investigate logs, network traffic, wireless attacks, and web attacks.