Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Introduction to Kali Linux for Forensics
- Overview of Kali Linux and its forensic capabilities
- Preparing a forensic-ready workstation
- Chain of custody principles and legal considerations
Disk and File System Forensics
- Acquiring and creating disk images
- Analyzing file systems using Autopsy and Sleuth Kit
- Recovering deleted files and concealed data
Memory and Process Analysis
- Capturing volatile memory
- Investigating processes and malware
- Utilizing Volatility for memory analysis
Network Forensics
- Capturing live network traffic
- Analyzing packets with Wireshark and tcpdump
- Tracing intrusion activities and lateral movement
Log and Artifact Analysis
- Reviewing system and application logs
- Identifying indicators of compromise
- Performing timeline analysis of incidents
Incident Investigation Workflow
- Evidence acquisition and validation
- Step-by-step investigation methodology
- Documenting findings for stakeholders
Advanced Tools and Techniques
- Mobile device forensic tools within Kali
- Steganography and encryption analysis
- Automating forensic tasks via scripting
Summary and Next Steps
Requirements
- Foundational knowledge of the Linux command line
- Understanding of core cybersecurity concepts
- Experience in incident response or IT security operations
Audience
- Digital forensic investigators
- Members of incident response teams
- IT security professionals
21 Hours
