Computer Forensics

Makati, Philippines

In this course, you will gain an understanding of static computer forensics analysis by learning about forensic principles, evidence continuity and methodology to employ when conducting a forensic investigation. Using practical case scenarios, you will be guided through the process of conducting a computer forensics investigation, and will learn the principles surrounding the collection of evidence, together with the forensic tools associated with forensic analysis.

Who Should Attend:

Those responsible or eager to become responsible for computer forensic investigation, including:

- Forensic & Network Investigators
- IT Security Officers
- Law Enforcement Officials
- Crime Prevention Officers
- IT Professors
- Interested Individuals

Course Outline:

1. Introduction to Computer Forensics
2. Introduction to Investigations
a. Areas involved in a forensic investigation
b. Investigation awareness phase of a forensic investigation
c. Principles of forensic computing
d. The ‘Chain of Custody’ process
e. Applying the chain of custody process
3. Identification and Seizure
a. Common electronic evidence devices
b. Seizure process of electronic evidence
c. Evidential items of interest
d. Actions performed on an electronic device

4. Understanding Electronic Data

a. Multiple bits
b. Large quantities of bytes in data storage

c. Decimal, Hexadecimal, ASCII, Unicode

5. Storage and File Systems
a. Preparing a hard drive for data storage
b. Physical disks and logical drives.
c. Differences between data and metadata
d. Common file system metadata
e. The purpose of file systems
f. Various file systems’ features
g. Live Data, Deleted Data, Unallocated Data

* This is only a partial course outline, for complete details, please contact the undersigned.

Event organizer: Bitshield

Register for the Computer Forensics