
Course Overview
Windows Forensics is an essential skill in the cybersecurity world. Covering a broad spectrum of aspects of the forensic investigation process performed on Windows OS. Participants will learn how different computer components work and how to investigate after a cyber-incident. The training will focus on developing hands-on capabilities of forensics teams or individual practitioners in these areas:
- Searching the hard drive for evidence
- Processing hidden files that are invisible or inaccessible containing past-usage information
- Performing a forensic analysis on a computer to reveal usage details, recover data, and accomplish a full inspection after the machine has been defragged or formatted
במסגרת הקורס יתבצע תרגול ע"י סימולטור ייעודי להכשרה.
Pre-requisites
הקורס מיועד לבעלי רקע בסיסי עם מערכות הפעלה. לא נדרש רקע קודם בתחום
Objectives
- Accessing concealed files on the system and extracting relevant information
- Mastering the steps of incident response
- Analyzing relevant case studies
Target Audience
This course targets participants with basic knowledge in IT or networking, who wish to have a deeper understanding of cyber investigations and the forensic process:
- Law enforcement officers & intelligence corps
- Incident responders
- Computer investigators
- IT/network administrators