SEC400 - Information Security, Incident Response and Computer Forensics
23332
Delivery Options
Instructor-Led at SLU
or
Instructor-Led - Virtual
Loading...
Course Description
This course provides a comprehensive overview of incident response & computer forensics. Topics include everything from establishing policies and procedures to collecting data from live Windows and Unix machines. Several hands-on exercises utilizing the HELIX Forensics CD will be incorporated into the course to allow you to perform live forensic analysis on the operating system. Tools Include: Windows Forensics Toolchest (WFT), Incident Response Collection Report (IRCR2), First Responder’s Evidence Disk (FRED), First Responder Utility (FRU), Md5 Generator, File Recovery, Rootkit Revealer and many others.
Course Outline
- Introduction
- Real-World Incidents
- Incident Response Process
- Preparing for Incident Response
- Incident Response Detection
- Data Collection
- Live Collections
- Forensic Duplication
- Network-Based Evidence
- Evidence Handling
- Data Analysis
- Computer Storage Fundamentals
- Data Analysis
- Computer Investigations
- Network Traffic Analysis
- Hacker Tools
- Forensic Reports
Prerequisites
SEC100 Information Security Essentials or equivalent experience
Duration
12 Hours | 2 Days or 4 Nights
Applies Towards the Following Certificates
- Cyber Security - 60 Hour : Required
- Cyber Security - 90 Hour : Required
