A detailed exploration of the tools and technologies commonly used in forensic examinations best practices. Topics include procedures for securing and validating evidence, including digital media and physical memory, and for recovering artifacts and analyzing, reporting, and presenting results in both criminal and civil situations. Experience with mobile forensic analysis is provided. Students may receive credit for only one of the following courses: CST 640 or CTCH 665.
Learning Objectives
Learners will master the following Cybersecurity Skills upon completion of the course.
Apply the key elements of digital forensics in the context of network security
Describe the major rules, laws, policies, and procedures relevant to network forensics
Demonstrate the functionalities and applications of various digital forensic tools for network analysis
Apply basic incident response techniques to simulated network breach scenarios
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.