✅ Forensics Science

✅ Computer Forensics

✅ Security Incident Report

✅ Aspects of Organizational Security

✅ Evolution of Computer Forensics

✅ Objective of Computer Forensics

✅ Need for Compute Forensics

✅ Forensics Readiness

✅ Cyber Crime

✅ Cyber Crime Investigation

✅ Corporate Investigations

✅ Reporting a Cyber Crime

✅ Investigating Computer Crime

✅ Before the Investigation

✅ Build a Forensics Workstation

✅ Building the Investigation Team

✅ People Involved in Computer Forensics

✅ Review Policies and Laws

✅ Forensics Laws

✅ Notify Decision Makers and Acquire Authorization

✅ Risk Assessment

✅ Build a Computer Investigation Toolkit

✅ Steps to Prepare for a Computer Forensics Investigation

✅ Computer Forensics Investigation Methodology

✅ Searching and Seizing Computers without a Warrant

✅ Searching and Seizing Computers with a Warrant

✅ The Electronic Communications Privacy Act

✅ Evidence

✅ Digital Data

✅ Definition of Digital Evidence

✅ Increasing Awareness of Digital Evidence

✅ Challenging Aspects of Digital Evidence

✅ The Role of Digital Evidence

✅ Characteristics of Digital Evidence

✅ Fragility of Digital Evidence

✅ Anti-Digital Forensics (ADF)

✅ Types of Digital Data

✅ Rules of Evidence

✅ Electronic Devices: Types and Collecting Potential Evidence

✅ Digital Evidence Examination Process

✅ Electronic Crime and Digital Evidence Consideration by Crime Category

✅ Electronic Evidence

✅ First Responder

✅ Roles of First Responder

✅ Electronic Devices: Types and Collecting Potential Evidence

✅ First Responder Toolkit

✅ First Responder Toolkit

✅ Creating a First Responder Toolkit

✅ Evidence Collecting Tools and Equipment

✅ First Response Basics

✅ Securing and Evaluating Electronic Crime Scene

✅ Conducting Preliminary Interviews

✅ Documenting Electronic Crime Scene

✅ Collecting and Preserving Electronic Evidence

✅ Packaging and Transporting Electronic Evidence

✅ Reporting the Crime Scene

✅ Note Taking Checklist

✅ First Responder Common Mistakes

✅ Setting a Computer Forensics Lab

✅ Computer Forensics Lab

✅ Planning for a Forensics Lab

✅ Budget Allocation for a Forensics Lab

✅ Physical Location Needs of a Forensics Lab

✅ Structural Design Considerations

✅ Environmental Conditions

✅ Electrical Needs

✅ Communication Needs

✅ Work Area of a Computer Forensics Lab

✅ Ambience of a Forensics Lab

✅ Ambience of a Forensics Lab: Ergonomics

✅ Physical Security Recommendations

✅ Fire-Suppression Systems

✅ Evidence Locker Recommendations

✅ Computer Forensic Investigator

✅ Law Enforcement Officer

✅ Lab Director

✅ Forensics Lab Licensing Requisite

✅ Features of the Laboratory Imaging System

✅ Technical Specification of the Laboratory-??ased Imaging System

✅ Forensics Lab

✅ Auditing a Computer Forensics Lab

✅ Recommendations to Avoid Eyestrain

✅ Investigative Services in Computer Forensics

✅ Computer Forensics Hardware

✅ Computer Forensics Software

✅ Hard Disk Drive Overview

✅ Disk Drive Overview

✅ Hard Disk Drive

✅ Solid-State Drive (SSD)

✅ Physical Structure of a Hard Disk

✅ Logical Structure of Hard Disk

✅ Types of Hard Disk Interfaces

✅ Hard Disk Interfaces

✅ Disk Platter

✅ Bad Sector

✅ Hard Disk Data Addressing

✅ Disk Capacity Calculation

✅ Tracks

✅ Sector

✅ Cluster

✅ Measuring the Performance of the Hard Disk

✅ Disk Partitions and Boot Process

✅ RAID Storage System

✅ File System Analysis Using The Sleuth Kit (TSK)

✅ Collecting Volatile Information

✅ Volatile Information

✅ Collecting Non-volatile Information

✅ Windows Memory Analysis

✅ Windows Registry Analysis

✅ Cache, Cookie, and History Analysis

✅ MD5 Calculation

✅ Windows File Analysis

✅ Metadata Investigation

✅ Text Based Logs

✅ Other Audit Events

✅ Forensic Analysis of Event Logs

✅ Windows Password Issues

✅ Forensic Tools

✅ Data Acquisition and Duplication Concepts

✅ Data Acquisition Types

✅ Disk Acquisition Tool Requirements

✅ Validation Methods

✅ RAID Data Acquisition

✅ Acquisition Best Practices

✅ Data Acquisition Software Tools

✅ Data Acquisition Hardware Tools

✅ Recovering the Deleted Files

✅ Deleting Files

✅ What Happens When a File is Deleted in Windows?

✅ Recycle Bin in Windows

✅ File Recovery in MAC OS X

✅ File Recovery in Linux

✅ File Recovery Tools for Windows

✅ File Recovery Tools for MAC

✅ File Recovery Tools for Linux

✅ Recovering the Deleted Partitions

✅ Partition Recovery Tools

✅ Overview and Installation of FTK

✅ Overview of Forensic Toolkit (FTK)

✅ Features of FTK

✅ Software Requirement

✅ Configuration Option

✅ Database Installation

✅ FTK Application Installation

✅ FTK Case Manager User Interface

✅ FTK Examiner User Interface

✅ Starting with FTK

✅ FTK Interface Tabs

✅ Adding and Processing Static, Live, and Remote Evidence

✅ Using and Managing Filters

✅ Using Index Search and Live Search

✅ Decrypting EFS and other Encrypted Files

✅ Working with Reports

✅ Overview of EnCase Forensic

✅ Overview of EnCase Forensic

✅ EnCase Forensic Features

✅ EnCase Forensic Platform

✅ EnCase Forensic Modules

✅ Installing EnCase Forensic

✅ EnCase Interface

✅ Case Management

✅ Working with Evidence

✅ Source Processor

✅ Analyzing and Searching Files

✅ Viewing File Content

✅ Bookmarking Items

✅ Reporting

✅ Steganography

✅ What is Steganography?

✅ How Steganography Works

✅ Legal Use of Steganography

✅ Unethical Use of Steganography

✅ Steganography Techniques

✅ Steganalysis

✅ Image Files

✅ Data Compression

✅ Locating and Recovering Image Files

✅ Image File Forensics Tools

✅ Password Cracking Concepts

✅ Password – Terminology

✅ Password Types

✅ Password Cracker

✅ How Does a Password Cracker Work?

✅ How Hash Passwords are Stored in Windows SAM

✅ Types of Password Attacks

✅ Classification of Cracking Software

✅ Systems Software vs. Applications Software

✅ System Software Password Cracking

✅ Application Software Password Cracking

✅ Password Cracking Tools

✅ Computer Security Logs

✅ Computer Security Logs

✅ Operating System Logs

✅ Application Logs

✅ Security Software Logs

✅ Router Log Files

✅ Honeypot Logs

✅ Linux Process Accounting

✅ Logon Event in Window

✅ Windows Log File

✅ IIS Logs

✅ Log File Accuracy

✅ Log Everything

✅ Keeping Time

✅ UTC Time

✅ ODBC Logging

✅ Logs and Legal Issues

✅ Log Management

✅ Centralized Logging and Syslogs

✅ Time Synchronization

✅ Event Correlation

✅ Log Capturing and Analysis Tools

✅ Network Forensics

✅ Network Forensics

✅ Network Forensics Analysis Mechanism

✅ Network Addressing Schemes

✅ Overview of Network Protocols

✅ Overview of Physical and Data-Link Layer of the OSI Model

✅ Overview of Network and Transport Layer of the OSI Model

✅ OSI Reference Model

✅ TCP/ IP Protocol

✅ Intrusion Detection Systems (IDS) and ??heir Placement

✅ Firewall

✅ Honeypot

✅ Network Attacks

✅ Log Injection Attacks

✅ Investigating and Analyzing Logs

✅ Investigating Network Traffic

✅ Traffic Capturing and Analysis Tools

✅ Documenting the Evidence Gathered on a Network

✅ Wireless Technologies

✅ Wireless Networks

✅ Wireless Terminologies

✅ Wireless Components

✅ Types of Wireless Networks

✅ Wireless Standards

✅ MAC Filtering

✅ Service Set Identifier (SSID)

✅ Types of Wireless Encryption: WEP

✅ Types of Wireless Encryption: WPA

✅ Types of Wireless Encryption: WPA2

✅ WEP vs. WPA vs. WPA2

✅ Wireless Attacks

✅ Investigating Wireless Attacks

✅ Features of a Good Wireless Forensics Tool

✅ Wireless Forensics Tools

✅ Traffic Capturing and Analysis Tools

✅ Email Terminology

✅ Email System

✅ Email Clients

✅ Email Server

✅ SMTP Server

✅ POP3 and IMAP Servers

✅ Importance of Electronic Records Management

✅ Email Message

✅ Email Crimes

✅ Email Headers

✅ Steps to Investigate

✅ Email Forensics Tools

✅ Laws and Acts against Email Crimes

✅ Mobile Phone

✅ Different Mobile Devices

✅ Hardware Characteristics of Mobile Devices

✅ Software Characteristics of Mobile Devices

✅ Components of Cellular Network

✅ Different Cellular Networks

✅ Cellular Network

✅ Mobile Operating Systems

✅ Mobile Forensics

✅ Mobile Forensic Process

✅ Mobile Forensics Software Tools

✅ Mobile Forensics Hardware Tools

✅ Computer Forensics Report

✅ Computer Forensics Report

✅ Salient Features of a Good Report

✅ Aspects of a Good Report

✅ Computer Forensics Report Template

✅ Investigative Report Writing

✅ Sample Forensics Report

✅ Report Writing Using Tools