Computer Hacking and Forensic Investigator

Digital Forensics and Incident Response
(DFI Certification)

INCIDENT RESPONSE LIFECYCLE

IDENTIFICATION

SPECIAL ACTION FOR RESPONDING TO DIFFERENT TYPES OF INCIDENTS

INCIDENT RECORD-KEEPING

INCIDENT FOLLOW-UP

COURSE INCLUDES

COURSE OUTCOME

COURSE DETAILS

DURATION

COURSE PRICE

BECOME A FORENSIC EXPERT?

Think Like a Game Changer

Digital Forensics and Incident Response (DFI Certification)

INCIDENT RESPONSE LIFECYCLE

– Signs of an incident.

– Alerts [endpoint protection, network security monitoring, host monitoring, account creation, privilege escalation, other indicators of compromise, SIEM, security analytics, and user behavior analytics].

– Estimate the scope of the incident.

– Designate a person who will communicate the incident containment and recovery status to senior management.

– Build a timeline of the attack.

– Chain of custody.

– Detecting and reaching to insider threats.

– Determine the extent of the potential data loss.

– Signs of an incident.

– Alerts [endpoint protection, network security monitoring, host monitoring, account creation, privilege escalation, other indicators of compromise, SIEM, security analytics, and user behavior analytics].

– Estimate the scope of the incident.

– Designate a person who will communicate the incident containment and recovery status to senior management.

– Build a timeline of the attack.

– Chain of custody.

– Detecting and reaching to insider threats.

– Determine the extent of the potential data loss.

– Documentation strategies: video and audio.

– Containment and quarantine.

– Pull the network cable, switch and site.

– Identifying and isolating the trust model.

– Evaluating whether a backup is compromised.

– Total rebuild of the Operating System.

– Moving to a new architecture.

– Who makes the determination to return to production?

– Monitoring to system.

– Expect an increase in attacks.

– Espionage.

– Inappropriate use.

– Pre-built forms.

– Legal acceptability.

– Lessons learned meeting.

– Changes in process for the future.

COURSE INCLUDES

# Lifetime Support

# Unlimited Revision

# Live one to one online support

# Lifetime access to online quiz for all domains

# Practice questions and labs before exam

# Free resources will be always available at a click away

# Continued CTF lab access

# PDF, Videos and Presentation copies

# More than 120 domain included for DFI

# 15+ case studies and real-world scenarios

# Discussion forum access for lifetime

# Premium industry based CTF access with Walkthroughs

COURSE OUTCOME

> Detect how and when a breach occurred

> Identify compromised and affected systems

> Perform damage assessments and determine what was stolen or changed

> Contain and remediate incidents

> Develop key sources of threat intelligence

> Hunt down additional breaches using knowledge of the adversary

Register at least 5 days prior to start date

Access course content and training

Schedule Exam

Get certified

COURSE DETAILS

WHO IS THIS COURSE FOR?

- Incident Response Team Members

- Threat Hunters

- SOC Analysts

- Experienced Digital Forensic Analysts

- Information Security Professionals

- Federal Agents and Law Enforcement Professionals

- Red Team Members, Penetration Testers, and Exploit Developers

- Hobbyist

INCLUDES CYBER THREAT INTELLIGENCE

+ Importance of Cyber Threat Intelligence

+ Understanding the “Kill Chain”

+ Threat Intelligence Creation and Use During Incident Response and Threat Hunting

+ Creation of Indicators of Compromise

+ Incident Response Team Life-Cycle Overview

COURSE SYLLABUS

Module 1: Computer Forensics in Today’s World

Module 2: Modern Forensics Investigation Process

Module 3: Understanding Hard Disks and File Systems

Module 4: Operating System Forensics

Digital Forensics and Incident Response
(DFI Certification)