Fundaments of Digital Forensics

Name: Fundaments of Digital Forensics
Rating: 4.2 (67 reviews)

Do you want to see yourself as the Sherlock Holmes in this digital era, become a Digital Forensics Investigator now !

Created byVinod Senthil

Last updated 3/2021

English

What you'll learn

Basics of Digital Forensics
How to become a Digital forensics Investigator

Course content

3 sections • 15 lectures • 2h 48m total length

Introduction to Digital Forensics10:02
In this Lecture we are going to see about Introduction to Digital Forensics. Digital forensics has been in the popular mainstream for some time, and has matured into an information-technology capability that is very common among modern information security programs. The goal of digital forensics is to support the elements of troubleshooting, monitoring, recovery, and the protection of sensitive data.
Types of Digital Data4:53
In this Lecture we going see about Types of Digital Data. The forensic analyst usually recovers evidence material using a number of methods (and tools), often beginning with the recovery of deleted information. The type of data analyzed varies but will generally include email, chat logs, images, internet history and documents.
Digital Evidences7:02
In this Lecture we are going to see about Digital Evidences. Digital evidence is information stored or transmitted in binary form that may be relied on in court. It can be found on a computer hard drive, a mobile phone, among other places. Digital evidence is commonly associated with electronic crime, or e-crime, such as child pornography or credit card fraud.
Evidences Imaging29:23
In this Lecture we are going to see about Evidence-based imaging. It consists of identifying the relevant imaging literature for a specific clinical question, understanding the strengths and limitations of the existing evidence, and then incorporating that evidence into clinical care.
Evidences Examination5:21
In this Lecture we are going to see about Evidence Examination. All forensic examinations commonly include determining the date and time of the evidence system. Dates and times play one of the most critical parts of a forensic analysis as it is the basis of a timeline analysis.
First Responder, Investigator and Expert Witness4:21
In this Lecture we are going to see about First Responder, Investigator and Expert Witness. A first responder plays an important role in the computer forensics process because he or she is the first person who arrives at the crime scene for initial investigation. The investigation process starts after collecting all the evidence from the crime scene. A forensic expert witness is a type of expert witness who would provide expert forensic testimony within a trial. A commonly known form of forensic expert witness is a scientist who performed an examination of a human skeleton so as to provide important evidence for a criminal trial.
Preserving Digital Evidences6:08
In this section, we will be discussing the critical steps that need to be followed to prevent loss of data before bringing to the forensic experts. Time is highly important in preserving digital evidence. Evidence preservation is the process of seizing suspect property without altering or changing the contents of data that resides on devices and removable media. It is the first step in digital evidence recovery.

Volatile Evidence Collection (RAM)8:29
In this section, we will be discussing the Evidence that is only present while the computer is running is called volatile evidence and must be collected using live forensic methods. This includes evidence that is in the system's RAM (Random Access Memory), such as a program that only is present in the computer's memory.
Data Hiding Techniques and Analysis24:13
In this Lecture we will see about Data Hiding Techniques and Analysis. Data hiding is the process of making data difficult to find while also keeping it accessible for future use. "Obfuscation and encryption of data give an adversary the ability to limit identification and collection of evidence by investigators while allowing access and use to themselves."
Data Carving5:54
In this section we going to see about Data Carving. Data carving, also known as file carving, is the forensic technique of reassembling files from raw data fragments when no filesystem metadata is available. It is a common procedure when performing data recovery, after a storage device failure, for instance.
Windows forensic23:22
In this section we going to see about Windows forensic. Operating System Forensics is the process of retrieving useful information from the Operating System (OS) of the computer or mobile device in question. The file system provides an operating system with a roadmap to data on the hard disk.
Browsing the skype database10:55
In this Lecture we are going to see about Skype forensics which is an emerging field of forensic investigation which mainly focuses on the criminal activities that have taken place through Skype communication. The Skype forensic analysis help the investigating officers to examine the Skype communication and extract the forensic artifacts from the Skype database.
Tools for Analysis11:42
In this Lecture we are going to see about Digital forensics tools can fall into many different categories, some of which include database forensics, disk and data capture, email analysis, file analysis, file viewers, internet analysis, mobile device analysis, network forensics, and registry analysis.

Case Study Part 111:29
In this case study we going to see about Forensics Investigation of Document Exfiltration involving Spear Phishing: The M57 Jean Case.
Case Study Part 25:39
In this case study we going to see about Autopsy report. Autopsy is the chief open source digital forensics platform that is anything but difficult to utilize, quick, and usable in every computerized examination. It analyzes hard drives, smart phones, media cards etc.

Requirements

Basics of computers and networking
Basic Knowledge of Ethical Hacking will be a plus

Description

Digital forensics, is an introduction to computer forensics and investigation, and provides a taster in understanding how to conduct investigations to correctly gather, analyze and present digital evidence to both business and legal audiences. The course is very useful for the students, lawyers, investigating officers who are keen to know and passionate about the concepts of Digital Forensics. There is continuous increase in the demand of digital forensic experts, a flourishing carrier option for those who are interested to explore this challenging profession. Other than career option, it makes you aware about different threats on the internet and how to protect yourself from all these threats. This course presents an overview of the principles and practices of digital Forensics. The objective of this class is to emphasize the fundamentals and importance of digital forensics, and to prepare students to conduct a digital investigation in an organized and systematic way. Forensic computer investigators and digital forensic experts reconstruct and analyze digital information to aid in investigations and solve computer-related crimes. They look into incidents of hacking, trace sources of computer attacks, and recover lost or stolen data. This course will provide theoretical and practical knowledge, as well as current research on Digital Forensics. Students will learn different techniques and procedures that will train them for Certified Forensic Computer Examiner (CFCE) exam.

Who this course is for:

Information Systems Security Analyst
Security Consultant
Computer Forensics Investigator
Computer Forensics Technician
Information Security Analyst
Forensic Computer Analyst

Fundaments of Digital Forensics

What you'll learn

Explore related topics

Course content

Introduction to Digital Forensics7 lectures • 1hr 7min

Volatile Evidence Collection (RAM)6 lectures • 1hr 25min

Case Study2 lectures • 17min

Requirements

Description

Who this course is for: