CHFI(Computer Hacking Forensic Investigator)黑客入侵反查专家课程
本文档由东方瑞通提供
课程介绍:
本课程在结合电脑鉴识科学采证准则,及对完整犯罪现场之数位证据搜证处理程序,建立对电脑鉴识理论的观念与培养电脑鉴识工具的使用能力,深度培养对各类攻击、入侵的采证与追踪技术。
适合人群:
执法人员,系统管理员,安全员,国防和军事的个人,法律专业人士,银行家,安全专家、或对电脑鉴识技术有兴趣的人
课程大纲:
• Computer Forensics in Today's World (电脑鉴识总论)
• Computer Forensics Investigation Process (电脑鉴识程序)
• Searching and Seizing of Computer (搜集资讯):无征兆时的电脑搜寻、有征兆时的电脑搜寻
• Digital Evidence(数位证据)
• First Responder Procedures (第一发现者程序)
• Incident Handling (事件处理):件的分类及各种处理技巧
• Computer Forensics Lab (电脑鉴识实验)
• Understanding Hard Disks and File Systems (硬碟与档案系统)
• Digital Media Devices (数位媒体储存设备)
• CD/DVD Forensics (如何鉴识光碟媒体)
• Windows、Linux、Macintosh Boot Process (作业系统开机程序)
• Windows Forensics I (Windows系统事件鉴识,Part I)
• Windows Forensics II (Windows系统事件鉴识,Part II)
• Linux Forensics (Linux系统的事件鉴识)
• Mac Forensics (Mac系统的事件鉴识)
• Data Acquisition and Duplication (资料的获取与再制)
• Recovering Deleted Files & Deleted Partitions (删除的资料/磁区复原)
• Forensics Investigations Using AccessData FTK (FTK鉴识工具)
• Forensics Investigations Using Enca (Enca鉴识工具)
• Steganography (伪装学)
• Image Files Forensics (影像档案鉴识)
• Audio Files Forensics (音效与音乐档案鉴识)
• Video Files Forensics (影像档案鉴识)
• Application Password Cracker (应用程式密码破解)
• Log Capturing and Event Correlation (Log抓取与事件关连)
• Network Forensics & Investigating Logs (网路鉴识与日志调查)
• Investigating Network Traffic (网路流量异常调查)
• Router Forensics (路由器事件鉴识)
• Investigating Wireless Attacks (无线网路攻击调查)
• Investigating Web Attacks (网站攻击调查)
• Investigating DoS Attacks (Dos阻断服务攻击调查)
• Investigating Internet Crimes (网际网路犯罪调查)
• Tracking Emails and Investigating Email Crime (Email的犯罪调查)
• PDA Forensics (PDA的事件鉴识)
• Blackberry Forensics (黑莓机的事件鉴识)
• iPod and iPhone Forensics (iPod与iPhone的事件鉴识)
• Cell Phone Forensics (手机的事件鉴识)
• Printer Forensics (印表机的入侵鉴识)
• Investigating Corporate Espionage (内部的间碟活动调查)
• Investigating Trademark and copyright Infringement (商标及著作权违反调查)
• Investigating Sexual Harassment Incidents (性骚扰调查)
• Investigating Child Pornography Cas (儿童色情调查)
• Investigative Report (调查报告)
• Become an Expert Witness (如何成为专家证人)
• Risk Asssment (风险评估)
• Evaluation and Certification of Information Systems (资讯系统的测试与认证)
