TN-415: Computer Hacking Forensics Investigator (CHFI)

Course Overview:

The Computer Hacking Forensic Investigator (CHFI) course delivers the security discipline of digital forensics from a vendor-neutral perspective. CHFI is a comprehensive course covering major forensic investigation scenarios and enabling students to acquire necessary hands-on experience with various forensic investigation techniques and standard forensic tools necessary to successfully carry out a computer forensic investigation leading to the prosecution of perpetrators.

The CHFI certification gives participants the necessary skills to perform an effective digital forensics investigation. CHRI presents a methodological approach to computer forensics including searching and seizing, chain-of-custody, acquisition, preservation, analysis and reporting of digital evidence

What’s Included:

5 days of instructor-led in classroom training
Detailed Labs for hands-on learning experience; approximately 50% of training is dedicated to labs
Hundreds of investigation tools including EnCase, Access Data FTL, & ProDiscover
Huge cache of evidence files for analysis including RAW, .dd images, video & audio files, MS Office files, systems files, etc.
CHFI Courseware
Exam Voucher
CHFI onsite exam scheduling

Course Objectives:

Establish threat intelligence and key learning points to support pro-active profiling and scenario modeling
Perform anti-forensic methods detection
Perform post-intrusion analysis of electronic and digital media to determine the who, where, what, when, and how the intrusion occurred
Extract and analyze of logs from various devices like proxy, firewall, IPS, IDS, Desktop, laptop, servers, SIM tool, router firewall, switches AD server, DHCP logs, Access Control Logs & conclude as part of investigation process
Identify & check the possible source/ incident origin
Recover deleted files and partitions in Windows, MAC OS X, and Linux
Conduct reverse engineering for known and suspected malware files
Collect data using forensic technology methods in accordance with evidence handling procedures, including collection of hard copy and electronic documents

Dates/Locations:

No Events

Duration: 5 Days

Course Content:

- Module 01. Computer Forensics in Today’s World
- Module 02. Computer Forensics Investigation Process
- Module 03. Understanding Hard Disks and File Systems
- Module 04. Data Acquisition and Duplication
- Module 05. Defeating Anti-forensics Techniques
- Module 06. Operating System Forensics (Windows, Mac, Linux)
- Module 07. Network Forensics
- Module 08. Investigating Web Attacks
- Module 09. Database Forensics
- Module 10. Cloud Forensics
- Module 10. Malware Forensics
- Module 11. Investigating Email Crimes
- Module 12. Investigating Email Crimes
- Module 13. Mobile Forensics
- Module 14. Forensics Report Writing and Presentation

Prerequisites:

- - 2+ years of proven information security work experience
  - Educational background with digital security specialization
Target Audience:
- - Law Enforcement
  - Defense & Military
  - E-Business Security
  - Systems Administrators
  - Legal Professionals
  - Banking & Insurance professionals
  - Government Agencies
  - IT Managers
Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-5425: Networking with Windows Server 2016

Course Overview:

Course two of a three course series to obtain a Server 2016 MCSA certification. This 5-day course provides the fundamental networking skills required to deploy and support Windows Server 2016 in most organizations. It covers IP fundamentals, remote access technologies, and more advanced content including Software Defined Networking.

The course leads directly to preparing for the(MCSA):Windows Server 2016 exam “70-741: Installation, Storage, and Compute with Windows Server 2016”. It also maps to Microsoft’s course 20741A, and is part of the Server 2016 MCSA certification.

Attendees to TN-5425: Networking with Window Server 2016 will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Plan and implement an IPv4 network
Implement Dynamic Host Configuration Protocol (DHCP)
Implement IPv6
Implement Domain Name System (DNS)
Implement and manage IP address management (IPAM)
Plan for remote access
Implement DirectAccess
Implement virtual private networks (VPNs)
Implement networking for branch offices
Configure advanced networking features
Implement Software Defined Networking

Prerequisites:

A basic understanding of networking fundamentals
Experience working with Windows Server 2008 or Windows Server 2012
Experience working in a Windows Server infrastructure enterprise environment
Knowledge of the Open Systems Interconnection (OSI) model
Understanding of core networking topologies and architectures such as local area networks (LANs), wide area networks (WANs) and wireless networking
Basic knowledge of the TCP/IP protocol stack, addressing and name resolution
Experience with and knowledge of Hyper-V and virtualization
Hands-on experience working with the Windows client operating systems such as Windows 8.1 or Windows 10

Liked the class? Then let everyone know!

TN-865: Wireshark Network Traffic and Security Analysis

Course Overview:

This course delivers the technical knowledge, insight, and hands-on training to receive in-depth knowledge on Wireshark® and TCP/IP communications analysis. You will learn to use Wireshark to identify the most common causes of performance problems in TCP/IP communications. You will learn about the underlying theory of TCP/IP and the most used application protocols, so that you can intelligently examine network traffic for performance issues or possible Indicators of Compromise (IoC).

Duration: 5 Days

Audience:

Anyone interested in learning to troubleshoot and optimize TCP/IP networks and analyze network traffic with Wireshark, especially network engineers, information technology specialists, and security analysts.

Course Prerequisites:

We recommend that attendees of this course have the following prerequisite:
• Network+

Dates/Locations:

No Events

Course Outline:

DAY ONE

Course Set Up and Analyzer Testing

Network Analysis Overview
Wireshark Functionality Overview
Capturing Wired and Wireless Traffic
Define Global and Personal Preferences for Faster Analysis
Defined Time Values and Interpret Summaries
Interpret Basic Trace File Statistics to Identify Trends
Create and Apply Display Filters for Efficient Analysis

DAY TWO

Follow Streams and Reassemble Data
Use Wireshark’s Expert System to Identify Anomalies
TCP/IP Analysis Overview
Analyze Common TCP/IP Traffic Patterns

DAY THREE

Graph I/O Rates and TCP Trends
802.11 (WLAN) Analysis Fundamentals
Voice over IP (VoIP) Analysis Fundamentals
Network Forensics Fundamentals

DAY FOUR

Detect Scanning and Discovery Processes
Analyze Suspect Traffic

DAY FIVE

Use Command‐Line Tools

TN-919: Penetration Tester Course

Course Overview:

This course engages students by providing in-depth knowledge of the most prominent and powerful attack vectors and an environment to perform these attacks in numerous hands-on scenarios. This course goes far beyond simple scanning for low-hanging fruit, and shows penetration testers how to model the abilities of an advanced attacker to find significant flaws in a target environment and demonstrate the business risk associated with these flaws.

Attendees to TN-919:Penetration Tester course will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Course Duration: 5 days

Course Objectives:

Advanced Hash Manipulation
Command Shell vs. Terminal Access
Enumerating Users
Exploitation Fundamentals
Injection Attacks
Legal Issues
Metasploit
Moving Files with Exploits
Obtaining and Passing Password Representations
Overview of Passwords
Penetration Testing Foundations
Penetration Testing Process
Penetration Testing via the Command Line
Profiling the Target
Reconnaissance
Scanning for Targets
Using a Proxy to Attack a Web Application
Vulnerability Scanning
Wireless Crypto and Client Attacks
Wireless Fundamentals

Course Prerequisites:

GSEC or equivalent experience
UNIX, Windows, networking, and security experience
This is a hands-on skill course requiring comfort with command line interaction and network communications

Comments

Latest comments from students

User: kdwagoner

Instructor comments: Very knowledgeable. Kept class focused and on task

Facilities comments: Good

Liked the class? Then let everyone know!

TN-205: A+ Skills Class

Course Overview:

TN-205: A+ Skills Class provides students with the skills, knowledge and understanding that will enable them to install, configure, upgrade, troubleshoot and repair personal computer systems. The A+ curriculum is excellent preparation for almost any computer related career or position. This course lays the foundation for further study in networking and programming. Designed for the new computer professional who has support knowledge of PC hardware, but needs to expand upon that knowledge.

Attendees to the TN-205: A+ Skills Class will receive TechNow approved course materials and expert instruction.

Please Note: This course is designed with a focus on skills and is not a preparation course for certification.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Identifying, Adding & Removing System Components
Installation, Configuring & System Optimization
Diagnosing & Troubleshooting Problems
Power Protection & Safety Procedures
Motherboards, Processors & Memory
Printers
Basic Networking
Operating System Fundamentals
Installation, Configuration & Upgrade
Diagnosing & Troubleshooting
Networks