**Formerly EnCase v7 Computer Forensics II
Course duration: 4 days
CPE Credits: 32
Delivery method: Group-Live
NASBA defined level: Intermediate
Prerequisites: DF120 – Foundations in Digital Forensics.
This hands-on course is designed for investigators with strong computer skills, prior computer forensics training, and experience using the OpenText™ EnCase™ software (EnCase). This course builds upon the skills covered in the DF120–Foundations in Digital Forensics course and enhances the examiner’s ability to work efficiently using the unique features of EnCase. During this course, students will build an investigation using analysis techniques, such as recovering deleted volumes, registry analysis, Recycle Bin examination, and examining compound files. Other analysis techniques, such as searching unallocated clusters, parsing current Windows artifacts, examining email and Internet artifacts, and analyzing USB device artifacts will be included.
Students must understand EnCase Forensic concepts, the structure of the evidence file, creating and using case files, and data acquisition and basic analysis methods. It is also important that the students are familiar with the methods for recovering deleted files and folders in a FAT environment, conducting indexed queries and keyword searches across logical and physical media, creating, and using EnCase bookmarks, file signature analysis, and exporting evidence.
This course is intended for cybersecurity professionals, litigation support, and forensic investigators.
We are excited about your interest in our courses and eager to provide you with all the details you need.
Send us a message via the contact form and we will get back to you as soon as possible.
Founded in 2010 by a group of industry experts, we work tirelessly to provide security solutions that protects individual and organizations from cyber-attacks.
