TN-415: Computer Hacking Forensics Investigator (CHFI)

Course Overview:

The Computer Hacking Forensic Investigator (CHFI) course delivers the security discipline of digital forensics from a vendor-neutral perspective. CHFI is a comprehensive course covering major forensic investigation scenarios and enabling students to acquire necessary hands-on experience with various forensic investigation techniques and standard forensic tools necessary to successfully carry out a computer forensic investigation leading to the prosecution of perpetrators.

The CHFI certification gives participants the necessary skills to perform an effective digital forensics investigation. CHRI presents a methodological approach to computer forensics including searching and seizing, chain-of-custody, acquisition, preservation, analysis and reporting of digital evidence

What’s Included:

5 days of instructor-led in classroom training
Detailed Labs for hands-on learning experience; approximately 50% of training is dedicated to labs
Hundreds of investigation tools including EnCase, Access Data FTL, & ProDiscover
Huge cache of evidence files for analysis including RAW, .dd images, video & audio files, MS Office files, systems files, etc.
CHFI Courseware
Exam Voucher
CHFI onsite exam scheduling

Course Objectives:

Establish threat intelligence and key learning points to support pro-active profiling and scenario modeling
Perform anti-forensic methods detection
Perform post-intrusion analysis of electronic and digital media to determine the who, where, what, when, and how the intrusion occurred
Extract and analyze of logs from various devices like proxy, firewall, IPS, IDS, Desktop, laptop, servers, SIM tool, router firewall, switches AD server, DHCP logs, Access Control Logs & conclude as part of investigation process
Identify & check the possible source/ incident origin
Recover deleted files and partitions in Windows, MAC OS X, and Linux
Conduct reverse engineering for known and suspected malware files
Collect data using forensic technology methods in accordance with evidence handling procedures, including collection of hard copy and electronic documents

Dates/Locations:

Date/Time	Event
03/23/2026 - 03/27/2026 08:00 -16:00	TN-415: Computer Hacking Forensics Investigator (CHFI) TechNow, Inc, San Antonio TX
06/29/2026 - 07/03/2026 08:00 -16:00	TN-415: Computer Hacking Forensics Investigator (CHFI) TechNow, Inc, San Antonio TX
09/28/2026 - 10/02/2026 08:00 -16:00	TN-415: Computer Hacking Forensics Investigator (CHFI) TechNow, Inc, San Antonio TX

Duration: 5 Days

Course Content:

- Module 01. Computer Forensics in Today’s World
- Module 02. Computer Forensics Investigation Process
- Module 03. Understanding Hard Disks and File Systems
- Module 04. Data Acquisition and Duplication
- Module 05. Defeating Anti-forensics Techniques
- Module 06. Operating System Forensics (Windows, Mac, Linux)
- Module 07. Network Forensics
- Module 08. Investigating Web Attacks
- Module 09. Database Forensics
- Module 10. Cloud Forensics
- Module 10. Malware Forensics
- Module 11. Investigating Email Crimes
- Module 12. Investigating Email Crimes
- Module 13. Mobile Forensics
- Module 14. Forensics Report Writing and Presentation

Prerequisites:

- - 2+ years of proven information security work experience
  - Educational background with digital security specialization
Target Audience:
- - Law Enforcement
  - Defense & Military
  - E-Business Security
  - Systems Administrators
  - Legal Professionals
  - Banking & Insurance professionals
  - Government Agencies
  - IT Managers
Comments

Latest comments from students

Liked the class? Then let everyone know!

CT-325: Security+

Course Overview:

The CT-325: Security+ (SY0-701) class is the primary class you will need to take if your job responsibilities include securing network services, network devices, and network traffic. It will also help you prepare for the CompTIA Security+ examination (exam number SY0-701). In the CT-325: Security+ class you’ll build on your knowledge and professional experience with computer hardware, operating systems, and networks as you acquire the specific skills required to implement basic security services on any type of computer network. Let us help you prepare for the CompTIA Security+ exam (SY0-701).

TechNow is a CompTIA partner and uses official CompTIA Security+ curriculum.

Attendees to CT-325: Security+ will receive TechNow approved course materials and TechNow expert instruction.

Dates/Locations:

Date/Time	Event
12/15/2025 - 12/19/2025 08:00 -16:00	CT-325: Security+ TechNow, Inc, San Antonio TX
02/09/2026 - 02/13/2026 08:00 -16:00	CT-325: Security+ TechNow – San Antonio, TX, San Antonio TX
04/13/2026 - 04/17/2026 08:00 -16:00	CT-325: Security+ TechNow, Inc, San Antonio TX
07/06/2026 - 07/10/2026 08:00 -16:00	CT-325: Security+ TechNow, Inc, San Antonio TX
09/21/2026 - 09/25/2026 08:00 -16:00	CT-325: Security+ TechNow, Inc, San Antonio TX
11/16/2026 - 11/20/2026 08:00 -16:00	CT-325: Security+ TechNow, Inc, San Antonio TX

Duration: 5 Days

Course Objectives:

Compare and contrast attacks
Compare and contrast security controls
Use security assessment tools
Explain basic cryptography concepts
Implement a public key infrastructure
Implement identity and access management controls
Manage access services and accounts
Implement a secure network architecture
Install and configure security appliances
Install and configure wireless and physical access security
Deploy secure host, mobile, and embedded systems
Implement secure network access protocols
Implement secure network applications
Explain risk management and disaster recovery concepts
Describe secure application development concepts
Explain organizational security concepts

Prerequisites:

CompTIA A+ and Network+ certifications, or equivalent knowledge.
Windows 7/8/10 and Server 2008/2012/2016 experience required.
Six to nine months experience in networking, including experience in configuring & managing TCP/IP.

Comments

Latest comments from students

User: joshjepsen@hotmail.com

Instructor comments: Instructor was very knowledgeable on all the course content. There were some instances when I felt he streamlined through some of the material too quickly, such as going over how to identify types of attacks.

Liked the class? Then let everyone know!

TN-913: Cloud Security Fundamentals

Course Overview:

TechNow Cloud Security Fundamentals addresses the loss of hands-on control of system, application, and data security in the Cloud computing environment. Security teams wrestle with the impact and liability of Cloud computing on an organization. This course enables the security team to assist in contract language and Service Level Agreements (SLAs) when utilizing Cloud Service Providers (CSPs).

Compliance and auditing are introduced with strategies for control verification and audit analysis in the CSP environment. Software as a Service (SaaS) to Infrastructure as a Service (IaaS) and everything in between require a compliance strategy. Students will go in-depth into the architecture and infrastructure fundamentals for private, public, and hybrid clouds. Topics covered include: patch and configuration management, virtualization security, application security, and change management. Policy, risk assessment, and governance within cloud environments will be covered with recommendations for both internal policies and contract provisions to consider.

TechNow has worked worldwide enterprise infrastructures for over 20 years and has developed demos and labs to exemplify the techniques required to effectively manage security in the cloud environment.

Attendees to TN-913: Cloud Security Fundamentals will receive TechNow approved course materials and expert instruction.

Date/Locations:

Date/Time	Event
02/09/2026 - 02/12/2026 08:00 -16:00	TN-913: Cloud Security Fundamentals TechNow, Inc, San Antonio TX
05/26/2026 - 05/29/2026 08:00 -16:00	TN-913: Cloud Security Fundamentals TechNow, Inc, San Antonio TX
09/08/2026 - 09/11/2026 08:00 -16:00	TN-913: Cloud Security Fundamentals TechNow, Inc, San Antonio TX
12/07/2026 - 12/10/2026 08:00 -16:00	TN-913: Cloud Security Fundamentals TechNow, Inc, San Antonio TX

Course Duration: 3 days

Course Objectives:

Cloud computing introduction
Security challenges in the cloud
Infrastructure security in the cloud
Policy, risk, and governance for cloud computing
Compliance and legal considerations
Audit and assessment for the cloud
Data security in the cloud
Identity and Access Management (IAM)
Disaster Recovery and Business Continuity Planning (DR/BCP) in the cloud
Intrusion detection and incident response

Course Prerequisites:

GSEC, CISSP, CASP or equivalent experience in managing enterprise infrastructures
Managing or administering at least one of UNIX, Windows, Databases, networking, or security

Comments

Latest comments from students

User: reedrobt

Instructor comments: Dave is like an encyclopedia of technical topics...what "doesn't" he have expertise in?

Facilities comments: Home2 location was well-kept and convenient to other services.

Liked the class? Then let everyone know!

AZ-500: Microsoft Azure Security Technologies

Course Overview:

Gain the knowledge and skills needed to implement security controls, maintain the security posture, and identify and remediate vulnerabilities by using a variety of security tools. The course covers scripting and automation, virtualization, and cloud N-tier architecture.

After completing this course, students will be able to describe specialized data classifications on Azure, Identify Azure data protection mechanisms, Implement Azure data encryption methods, Secure internet protocols and how to implement them on Azure, Describe Azure security services and features.

TechNow has worked worldwide enterprise infrastructures for over 20 years and has developed demos and labs to exemplify the techniques required to demonstrate cloud technologies and to effectively manage security in the cloud environment.

Attendees to AZ-500: Microsoft Azure Security Technologies will receive TechNow approved course materials and expert instruction.

Date/Locations:

No Events

Course Duration: 5 days

Course Outline:

Identity and access
- Configure Azure Active Directory for Azure workloads and subscriptions
- Configure Azure AD Privileged Identity Management
- Configure security for an Azure subscription
Platform Protection
- Understand cloud security
- Build a network
- Secure network
- Implement host security
- Implement platform security
- Implement subscription security
Security Operations
- Configure security services
- Configure security policies by using Azure Security Center
- Manage security alerts
- Respond to and remediate security issues
- Create security baselines
Data and Applications
- Configure security policies to manage data
- Configure security for data infrastructure
- Configure encryption for data at rest
- Understand application security
- Implement security for application lifecycle
- Secure applications
- Configure and manage Azure Key Vault

Prerequisites :

- - AZ-900: Microsoft Azure Fundamentals
  - Students should have 1-2 years professional development experience and experience with Microsoft Azure.
  - Student must be able to program in an Azure Supported Language.

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-535: Certified Forensic Computer Examiner (CFCE)

CCFE Core Competencies

Procedures and Legal Issues
Computer Fundamentals
Partitioning Schemes
Data Recovery
Windows File Systems
Windows Artifacts
Report writing (Presentation of Finding)

Procedures and Legal issues

Knowledge of search and subjection and rules for evidence as applicable to computer forensics.
Ability to explain the on-scene action taken for evidence preservation.
Ability to maintain and document an environment consolidating the computer forensics.

Computer Fundamentals

Understand BIOS
Computer hardware
Understanding of numbering system (Binary, hexadecimal, bits, bytes).
Knowledge of sectors, clusters, files.
Understanding of logical and physical files.
Understanding of logical and physical drives.

Partitioning schemes

Identification of current partitioning schemes.
Understanding of primary and extended partition.
Knowledge of partitioning schemes and structures and system used by it.
Knowledge of GUID and its application.

Windows file system

Understanding of concepts of files.
Understanding of FAT tables, root directory, subdirectory along with how they store data.
Identification, examination, analyzation of NTFS master file table.
Understanding of $MFT structure and how they store data.
Understanding of Standard information, Filename, and data attributes.

Data Recovery

Ability to validate forensic hardware, software, examination procedures.
Email headers understanding.
Ability to generate and validate forensically sterile media.
Ability to generate and validate a forensic image of media.
Understand hashing and hash sets.
Understand file headers.
Ability to extract file metadata from common file types.
Understanding of file fragmentation.
Ability to extract component files from compound files.
Knowledge of encrypted files and strategies for recovery.
Knowledge of Internet browser artifacts.
Knowledge of search strategies for examining electronic

Windows Artifacts

Understanding the purpose and structure of component files that create the windows registry.
Identify and capability to extract the relevant data from the dead registry.
Understand the importance of restore points and volume shadow copy services.
Knowledge of the locations of common Windows artifacts.
Ability to analyze recycle bin.
Ability to analyze link files.
Analyzing of logs
Extract and view windows logs
Ability to locate, mount and examine VHD files.
Understand the Windows swap and hibernation files.

Report Writing (Presentation of findings)

Ability to conclude things strongly based on examination observations.
Able to report findings using industry standard technically accurate terminologies.
Ability to explain the complex things in simple and easy terms so that non-technical people can understand clearly.
Be able to consider legal boundaries when undertaking a forensic examination