Compendium CE trainings
Incident within IT environment, computer forensic

As the number of IT security incidents increases month upon month, the need for effective digital investigation techniques grows. This two-day course teaches students how to conduct a successful digital forensic investigation, and builds a solid base of knowledge for further learning. The basis of this course will be a live forensic investigation of a compromised web server. Participants will gain an understanding of the different types of computer and network security incidents, forensic investigation processes and procedures, forensic evidence issues and requirements, and common pitfalls in forensic investigations. A key focus of the workshop will be the use of Windows- and UNIX-based tools for forensic data collection and analysis. The fun part of the course is the ability to see the real tools used in present attacks.

This course is valuable for systems administrators and those involved in responding to security incidents.This course give you the basic knowledge about tools and techniques you can use during computer investigation and computer forensics. During training students will be informed how to conduct computer investigation, how preserve digital evidences and maintain “Chain of custody”. The next stage of this course provide you knowledge about main rules and principals concerning documentation computer investigation.

During workshops students will be informed about how to prepare computer crime scene documentation, copy and security of the volatile data, duplication of digital evidence for the next stage of investigation.
2 days

1. The analysis of system's logs. Investigating the time line of discovered actions.
2. Rootkit, backdoor, trojan horse and keylogger detection.
3. IM client, Web browser, and e-mail client. The analysis of potential entry-points to the monitored system.
4. Steganography. Hidding information on the hard drive, and discovering covert channels of data.
5. Access to the encrypted data. The methods of bypassing the encryption and descriptions of tools implementing basic passwords attacks.
6. Data recovery. Finding and securing deleted files on hard drives, CD/DVD, flash cards and pendrives.
7. Data deletion. Presentation of the methods designed to completely erase data from hard disk drives.
8. Computer forensic software - the review of the best tools around.

Basic knowledge of TCP/IP, the OSI model, and network architecture (the difference between a hub, switch, firewall, IDS/IPS).

Knowledge of Linux/Unix and Windows administrations and strong experience in using Internet services (Instant Messenging, E-Mail, WWW).

• Compendium CE: Incident within IT environment, computer crime law and regulation
• Compendium CE: Incident within IT environment, digital evidence

The participants will obtain certificates signed by Compendium Education Center.

Krakow - 5 Tatarska Street, II floor, hours: 9:00 am - 4:00 pm
Warsaw - 17 Bielska Street, hours: 9:00 am - 4:00 pm
Compendium's trainer.
Please feel free to contact us by phone or by form below to get actual price for this training.

• 2008-12-11: Kraków
  » Sign up at this date

• Design and Implementation of the Security Policy according to ISO/IEC 17799 norm
• Penetration Testing Course - Hacking Methodology
• Attack Detection, Evidences Collection and Intrusion Preventions Course
• Incident within IT environment, computer crime law and regulation
• Incident within IT environment, digital evidence
• Incident within IT environment, computer forensic
• Attacking and application protection
• Wireless Network Security
• MPLS Introduction
• ATM Introduction
• IP over ATM
• GSM/GPRS/EDGE Introduction

• BlueCoat: Blue Coat Director Course
• BlueCoat: Blue Coat WAN Acceleration Professional (BCWAP) Course
• Fortinet: FortiMail Email Filtering
•   New trainings: RSS Feed »