C5W DIGITAL FORENSIC ANALYST - VIRTUAL LIVE TRAINING (Semester Based)
The number of incidents being reported is rapidly increasing every year. Organizations need to respond to these incidents and investigate what, when, why, where, who, and how they happened. This requires special skills and knowledge in systems and how they operate. This is not a simple task that can be handled by an IT professional, but only those trained to acquire and analyze information in a forensically sound manner.
Cyber 5W Digital Forensic Analyst training will guide students on how to conduct digital investigations and write investigative forensic reports. This training uses an experiential learning process for training students, where students learn digital forensics by doing investigative tasks on real-world cases. Students will learn how to perform evidence acquisition and how to deal with disks and file systems, and then explore the forensic artifacts one may encounter when working with the Windows operating system. By completing this training, students are prepared to take the exam that leads to the Cyber 5W Certified Digital Forensic Analyst (CCDFA) certificate.
The full course contents has been published and new extra content is being added.
Live Training: Instructor (48 hour) | Materials | Certification Exam
The course material includes over 55 Hands-on Labs and 50 Videos
Sessions will be scheduled upon a mutual agreement with the group
After completing this course, students will be able to demonstrate how to acquire forensically sound evidence, check evidence integrity, analyze and fix corrupted drives, analyze FAT32 and NTFS file systems, analyze different Windows artifacts, and finally write a report about their analysis.
Ali Hadi is a highly accomplished and experienced Senior Cybersecurity Specialist with 14+ years of professional experience in Information Technology. He is currently working as a full-time professor and researcher at the Computer and Digital Forensics and Cybersecurity Departments of Champlain College, USA. Ali is a Co-Founder and the Chief Technology Officer of Cyber 5W. He holds a PhD and MSc degree in Computer Information Systems, as well as a BSc degree in Computer Science. Throughout his professional career, Ali has earned more than 20 professional certifications. Ali is a sought-after consultant in the field of cybersecurity, offering expertise in areas such as digital forensics, incident response, adversary simulation, offensive security, and malware analysis. He is also an established author, speaker, and freelance instructor, having provided technical training to government and private firms as well as other organizations. Ali continues to be an influential figure in the digital forensics community and is dedicated to promoting forensics education and research. More details could be found here or contact him directly through twitter here.
After completing this course, you are expected to:
Understand the fundamentals of digital forensic investigations
Demonstrate correct methods of evidence gathering
Learn how to extract file metadata and analyze files using a hex-editor
Summarize the analysis results and write investigative reports
Ability to analyze and fix corrupted disks
Ability to analyze FAT32 and NTFS file systems, plus recover and carve files from raw data
Ability to investigate Windows System Artifacts
Investigating Windows Program Execution Artifacts
Investigating Windows Registry and Windows Shellbags
Ability to analyze Windows Events Logs, Scheduled Tasks, and different Windows Applications (e.g. Skype, One Drive, etc)
This course assumes no previous knowledge in digital forensics, however basic knowledge in computer science or any related field is highly desirable.
Anyone who wants to start a career in digital forensics, SOC team members, incident response handlers, red team members, malware analysts, and anyone who is curious to know about digital forensics and wants to learn something new.
what you need to for the course
1. Computer or laptop with a Linux/Windows/Mac Operating System.
2. Capability of running virtualization software such as VMWare or VirtualBox.
3. More than 100 GB of disk space for the Virtual Machines and Forensic Images used.
Info you need to know to get a refund
Full refunds will be provided up to 14 days before the course start date. You are allowed to change the course schedule up to 10 days before the course starts.