Computer Hacking Forensic Investigator (CHFI)

Classroom Learning

Also available via

Who Needs to Attend

Intermediate-level students in the following positions: police and other law enforcement personnel, defense and military personnel, e-business security professionals, systems administrators, legal professionals, banking, insurance and other professionals, government agencies, and IT managers. More experienced students should consider the Foundstone courses.

Prerequisites

Experience with Windows and/or UNIX/LINUX operating systems and knowledge of TCP/IP and networking. Security+ Prep Course and CEH certification is strongly recommended.

Certified Ethical Hacker

Follow-On Courses

Foundstone Ultimate Hacking

Learn about cybercrime investigation while preparing for CHFI certification.

This course is not currently offered by Global Knowledge. Information here is provided for reference only.

Ideally suited for intermediate-level students who want a high-level understanding of the concepts of Forensic Investigation, this course is taught in an open-ended, experimental atmosphere where you will have the opportunity to work with fellow students and the instructor to gain an appreciation for this exciting area. Included with the course are extensive reference manuals to guide your learning experience.

Learn to identify an intruder's footprints and to properly gather the necessary evidence to prosecute using many of today's top tools of the forensic trade, including software, hardware, and specialized techniques. The need for businesses to become more efficient and integrated with one another as well as with the home user has given way to a new type of criminal, the cybercriminal. It is no longer a question of if your organization will be hacked or compromised, but rather a question of when. Today's battles between corporations, governments, and countries are no longer fought only in the typical arenas of boardrooms or battlefields using physical force. Today's battlefield is in the technical realm, which ties into almost every facet of modern day life. If you or your organization requires the knowledge or skills to identify, track, and prosecute cybercriminals, this is the course for you.

This course includes 1-year access to our 50-book Online Security Reference Library with titles specially selected to reinforce course concepts.

What You'll Learn

Law and computer forensics in today's world
How the computer investigation process and security incident response team work
Computer forensic laboratory requirements
Understanding file systems and hard disks
Windows forensics
Linux and Macintosh boot processes
Linux forensics
Data acquisition and duplication
Recovering deleted files
Image files forensics
Steganography
Computer forensic tools
Application password crackers
Investigating logs and network traffic
Router forensics
Investigating web attacks and e-mail crimes, tracking e-mail
Mobile and PDA forensics
Investigating trademark and copyright infringement
Investigative reports and becoming an expert witness
Forensics in action

Course Outline

1. Computer Forensics in Today's World

2. Law and Computer Forensics

3. Computer Investigation Process

4. First Responder Procedure

5. CSIRT

6. Computer Forensic Lab

7. Understanding File Systems and Hard Disks

8. Understanding Digital Media Devices

9. Windows, Linux, and Macintosh Boot Processes

10. Windows Forensics

11. Linux Forensics

12. Data Acquisition and Duplication

13. Computer Forensic Tools

14. Forensics Investigations Using Encase

15. Recovering Deleted Files and Deleted Partitions

16. Image Files Forensics

17. Steganography

18. Application Password Crackers

19. Network Forensics and Investigating Logs

20. Investigating Network Traffic

21. Investigating Wireless Attacks

22. Investigating Web Attacks

23. Router Forensics

24. Investigating DoS Attacks

25. Investigating Internet Crimes

26. Tracking E-mails and Investigating E-mail Crimes

27. Investigating Corporate Espionage

28. Investigating Trademark and Copyright Infringement

29. Investigating Sexual Harassment Incidents

30. Investigating Child Pornography

31. PDA Forensics

32. iPod Forensics

33. Blackberry Forensics

34. Investigative Reports

35. Becoming an Expert Witness

Labs

This course includes hands-on labs. The labs are taught in an open-ended, non-structured manner, allowing you to experiment with a large variety of tools of your choosing to gain experience with the concepts presented.