Home · Courses · Schedule and Speakers · Registration · Hotels and Directions · Surveys · Contact Us

COMPUTER FORENSICS

Course Outline:

This course will provide a broad overview of computer forensics appropriate for the community college level. This course will have a large hands-on component. Using primarily open source software, powerful forensics tools and techniques will be explored.  Instructors should come away with a cost-effective methodology to introduce their students to digital forensics. This course will be using the textbook File System Forensic Analysis by Brian Carrier, ISBN #0-321-26817-2.
 
The strategy and theory of digital forensic investigation will be introduced in labs using the Helix Incident Response & Forensics tools CD. Tools and techniques for seizing evidence will be introduced, including making a forensic image and verifying that image. A forensics workstation will be built by the student using Ubuntu and Autopsy.  This work station will be used to explore data mining tools and techniques.

Overview / Helix
Procedure
Hard Drive Technologies & Introduction to Imaging     
Imaging
Optical Media and DRM
Other Media
Live Acquisition and Password Mining
Partitioning and Data Organization
Installing Ubuntu, SleuthKit, and Autopsy
Survey of Data Mining Tools
Timelining
Data Carving
Advanced String Scanning
Leveraging Alert and Ignore Databases
Case Studies with Autopsy

I will do my best to make this class lives up to everyone’s expectations.

I am looking forward to meeting you.

Craig Newman
MATC IT Security Instructor