When an incident is suspected within your network, you need more than an
incident response, you need an incident investigation. Our Investigation Track
will provide your staff with the skills to identify, collect, preserve and
analyze evidence in a wide array of network incidents. Whether committed by
rogue employees or external threats, your response to and investigation of an
incident can be make the difference between a minor setback and a major crisis.
Let our experts show you how to conduct a thorough, and court admissible,
investigation.
Intermediate Internet Investigative Techniques
This course provides investigators who already possess a basic understanding of computer networks and their associated technologies with more advanced skills for conducting network investigations. Attendees are provided with training in more advanced networking technologies and shown how to leverage this knowledge into effective investigative techniques. The course focuses on operating system independent concepts that will be applicable to all network environments.
Specific topics discussed include:
- Networking Theory
- TCP/IP Communications and Headers
- Hacker Methodologies
- Malicious Software
- Analysis of Intrusion Detection System Logs
- Analysis of Firewall and Router Logs
- Analysis of HTTP, DHCP and Other Server Logs
This five-day, hands on course utilizes a series of practical, scenario-based exercises to provide students with real-world experience which reinforces the topics presented. Investigators completing this course will have a thorough understanding of how to conduct network investigations and analyze the evidence collected.
back to top
