• Classroom
  • Online, Instructor-Led

This course prepares individuals for the CHFI v8 exam through instructions of computer forensics from a vendor-neutral perspective. The course covers detection of hacking attacks, proper extraction of evidence to report the crime and conduct audits to prevent future attacks. Learning to apply the application of computer investigation and analysis techniques in the interest of determining potential legal evidence is highlighted as well. Students will draw on an array of methods for discovering data that resides in a computer system, and recovering deleted, encrypted or damaged file information.

Learning Objectives

  • Investigate cyber-crime and laws involved
  • Learn how to recover deleted files and deleted partitions in Windows, Mac OS X, and Linux
  • Investigate logs, network traffic, wireless attacks and web attacks
  • Learn how to track emails and investigate email crimes
  • Investigate logs, network traffic, wireless attacks and web attacks

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.