Training Course:Computer Hacking Forensic InvestigatorSchool/Trainer:Hilton Computer Strategies
Houston, Texas, United States
Course Format: Classroom | E-learning | Virtual Class | Online | On-site | Blended | Self-paced
Course Description:
'' The CHFI course will give participants the necessary skills to identify an intruder’s footprints and to properly gather the necessary evidence to prosecute. Many of today’s top tools of the forensic trade will be taught during this course, including software, hardware and specialized techniques. The need for businesses to become more efficient and integrated with one another, as well as the home user, has given way to a new type of criminal, the "cyber-criminal." It is no longer a matter of "will your organization be comprised (hacked)?" but, rather, "when?" Today’s battles between corporations, governments, and countries are no longer fought only in the typical arenas of boardrooms or battlefields using physical force. Now the battlefield starts in the technical realm, which ties into most every facet of modern day life. If you or your organization requires the knowledge or skills to identify, track, and prosecute the cyber-criminal, then this is the course for you.
Audience
� Police and other law enforcement personnel
� Defense and Military personnel
� e-Business Security professionals
� Systems administrators
� Legal professionals
� Banking, Insurance and other professionals
� Government agencies
� IT managers
Certified Professional Exams
The CHFI 312-49 exam - Certified Hacking Forensic Investigator.
Prerequisites
A CHFI candidate should have experience with Windows and/or UNIX/LINUX operating systems, and knowledge of TCP/IP and networking. CEH certification is strongly recommended.
Course Outline
Module I: Computer Forensics in Today’s World
�Introduction
�History of Forensics
�Definition of Forensic Science
�Definition of Computer Forensics
�What Is Computer Forensics?
�Need for Computer Forensics
�Evolution of Computer Forensics
�Computer Forensics Flaws and Risks
�Corporate Espionage Statistics
�Modes of Attacks
�Cyber Crime
�Examples of Cyber Crime
�Reason for Cyber Attacks
�Role of Computer Forensics in Tracking Cyber Criminals
�Rules of Computer Forensics
�Computer Forensics Methodologies
�Accessing Computer Forensics Resources
�Preparing for Computing Investigations
�Maintaining professional conduct
�Understanding Enforcement Agency Investigations
�Understanding Corporate Investigations
�Investigation Process
�Digital Forensics
Module II: Law And Computer Forensics
�What Is Cyber Crime?
�What Is Computer Forensics?
�Computer Facilitated Crimes
�Reporting Security Breaches to Law Enforcement
�National Infrastructure Protection Center
�FBI
�Federal Statutes
�Cyber Laws
�Approaches to Formulate Cyber Laws
�Scientific Working Group on Digital Evidence (SWGDE)
�Federal Laws
�The USA Patriot Act of 2001
�Freedom of Information Act
�Building Cyber Crime Case
�How the FBI Investigates Computer Crime?
�How to Initiate an Investigation?
�Legal Issues Involved in Seizure of Computer Equipments
�Searching With a Warrant
�Searching Without a Warrant
�Privacy Issues Involved in Investigations
�International Issues Related to Computer Forensics
�Crime Legislation of EU
�Cyber Crime Investigation
Module III: Computer Investigation Process
�Investigating Computer Crime
�Investigating a Company Policy Violation
�Investigation Methodology
�Evaluating the Case
�Before the Investigation
�Document Everything
�Investigation Plan
�Obtain Search Warrant
�Warning Banners
�Shutdown the Computer
�Collecting the Evidence
�Confiscation of Computer Equipments
�Preserving the Evidence
�Importance of Data-recovery Workstations and Software
�Implementing an Investigation
�Understanding Bit-stream Copies
�Imaging the Evidence Disk
�Examining the Digital Evidence
�Closing the Case
�Case Evaluation
Module IV: Computer Security Incident Response Team
�Present Networking Scenario
�Vulnerability
�Vulnerability Statistics
�What Is an Incident?
�A Study by CERT Shows Alarming Rise in Incidents (security Breach)
�How to Identify an Incident
�Whom to Report an Incident?
�Incident Reporting
�Category of Incidents
�Handling Incidents
�Procedure for Handling Incident
�Preparation
�Identification
�Containment
�Eradication
�Recovery
�Follow up
�What Is CSIRT?
�Why an Organization Needs an Incident Response Team?
�Need for CSIRT
�Example of CSIRT
�CSIRT Vision
�Vision
�Best Practices for Creating a CSIRT
�Other Response Teams Acronyms and CSIRTs around the world
�World CSIRT
Module V: Computer Forensic Laboratory Requirements
�Budget Allocation for a Forensics Lab
�Physical Location Needs of a Forensic Lab
�Work Area of a Computer Forensics Lab
�General Configuration of a Forensic
�Equipment Needs in a Forensics Lab
�Ambience of a Forensics Lab
�Environmental Conditions
�Recommended Eyestrain Considerations
�Structural Design Considerations
�Electrical Needs
�Communications
�Basic Workstation Requirements in a Forensic Lab
�Consider stocking the following hardware peripherals
�Maintain Operating System and Application Inventories
�Common Terms
�Physical Security Recommendations for a Forensic Lab
�Fire-Suppression Systems
�Evidence Locker Recommendations
�Evidence Locker Combination Recommendations
�Evidence Locker Padlock Recommendations
�Facility Maintenance
�Auditing a Computer Forensics Lab
�Auditing a Forensics Lab
�Forensics Lab
�Mid Sized Lab
�Forensic Lab Licensing Requisite
�Forensic Lab Manager Responsibilities
Module VI: Understanding File systems and Hard disks
Disk Drive Overview - I
Hard Disk
Disk Platter
Tracks
Tracks Numbering
Sector
Sector addressing
Cluster
Cluster Size
Slack Space
Lost Clusters
Bad Sector
Understanding File Systems
Types of File System
List of Disk File Systems
List of Network file systems
Special Purpose File systems
Popular Linux File systems
Sun Solaris 10 File system - ZFS
Windows File systems
Mac OS X File system
CD-ROM / DVD File system
File system Comparison
Boot Sector
Exploring Microsoft File Structures
Disk Partition Concerns
Boot Partition Concerns
Examining FAT
NTFS
NTFS System Files
NTFS Partition Boot Sector
NTFS Master File Table (MFT)
NTFS Attributes
NTFS Data Stream
NTFS Compressed Files
NTFS Encrypted File Systems (EFS)
EFS File Structure
Metadata File Table (MFT)
EFS Recovery Key Agent
Deleting NTFS Files
Understanding Microsoft Boot Tasks
Windows XP system files
Understanding Boot Sequence DOS
Understanding MS-DOS Startup Tasks
Other DOS Operating Systems
Registry Data
Examining Registry Data
Module VII: Windows Forensics
Locating Evidence on Windows Systems
Gathering Volatile Evidence
Pslist
Forensic Tool: fport
Forensic Tool - Psloggedon
Investigating Windows File Slack
Examining File Systems
Built-in Tool: Sigverif
Word Extractor
Checking Registry
Reglite.exe
Tool: Resplendent Registrar 3.30
Microsoft Security ID
Importance of Memory Dump
Manual Memory Dumping in Windows 2000
Memory Dumping in Windows XP and Pmdump
System State Backup
How to Create a System State Backup?
Investigating Internet Traces
Tool - IECookiesView
Tool - IE History Viewer
Forensic To ...''
Please go to the school's official website for training price and schedule:
http://www.hiltoncomputer.com/
Phone:1-800-324-7415
School Address:
Hilton Computer Strategies, 6001 Savoy, Suite 207, Houston, TX 77036 USA
Jobs & Resumes: Houston
Houses & Roommates: Houston
Other training courses offered by Hilton Computer Strategies:
Microsoft Solutions Framework Essentials
Microsoft Systems Management Server 2003
Microsoft Office 2007 Professional Plus
PowerBuilder
PowerShell for Administrators
Project Management Professional Preparation
Visual Basic Scripting Edition and Windows Script Host Essentials
Scripting Microsoft Windows Management Instrumentation
Microsoft Internet Security and Acceleration Server 2004
Ethical Hacking and Countermeasures
CISSP Foundation
Service Oriented Architecture
Microsoft Office SharePoint Server 2007
Microsoft Office InfoPath 2007
Microsoft Office SharePoint Server 2007 Administration
Inside Microsoft SharePoint 2007 Products and Technology
Implementing a Microsoft SQL Server 2005 Database
Maintaining a Microsoft SQL Server 2005 Database
Microsoft SQL Server 2005 Server-Side Solutions
Notice: The course description on this page was captured from the Internet as historical reference or submitted by visitors. It was archived statically and not updated from day to day.
Tips:
If you can not find a training course suitable for you instantly, you can leave your training request here and let trainers contact you later. |
|
|
