TN-535: Certified Forensic Computer Examiner (CFCE)

CCFE Core Competencies

Procedures and Legal Issues
Computer Fundamentals
Partitioning Schemes
Data Recovery
Windows File Systems
Windows Artifacts
Report writing (Presentation of Finding)

Procedures and Legal issues

Knowledge of search and subjection and rules for evidence as applicable to computer forensics.
Ability to explain the on-scene action taken for evidence preservation.
Ability to maintain and document an environment consolidating the computer forensics.

Computer Fundamentals

Understand BIOS
Computer hardware
Understanding of numbering system (Binary, hexadecimal, bits, bytes).
Knowledge of sectors, clusters, files.
Understanding of logical and physical files.
Understanding of logical and physical drives.

Partitioning schemes

Identification of current partitioning schemes.
Understanding of primary and extended partition.
Knowledge of partitioning schemes and structures and system used by it.
Knowledge of GUID and its application.

Windows file system

Understanding of concepts of files.
Understanding of FAT tables, root directory, subdirectory along with how they store data.
Identification, examination, analyzation of NTFS master file table.
Understanding of $MFT structure and how they store data.
Understanding of Standard information, Filename, and data attributes.

Data Recovery

Ability to validate forensic hardware, software, examination procedures.
Email headers understanding.
Ability to generate and validate forensically sterile media.
Ability to generate and validate a forensic image of media.
Understand hashing and hash sets.
Understand file headers.
Ability to extract file metadata from common file types.
Understanding of file fragmentation.
Ability to extract component files from compound files.
Knowledge of encrypted files and strategies for recovery.
Knowledge of Internet browser artifacts.
Knowledge of search strategies for examining electronic

Windows Artifacts

Understanding the purpose and structure of component files that create the windows registry.
Identify and capability to extract the relevant data from the dead registry.
Understand the importance of restore points and volume shadow copy services.
Knowledge of the locations of common Windows artifacts.
Ability to analyze recycle bin.
Ability to analyze link files.
Analyzing of logs
Extract and view windows logs
Ability to locate, mount and examine VHD files.
Understand the Windows swap and hibernation files.

Report Writing (Presentation of findings)

Ability to conclude things strongly based on examination observations.
Able to report findings using industry standard technically accurate terminologies.
Ability to explain the complex things in simple and easy terms so that non-technical people can understand clearly.
Be able to consider legal boundaries when undertaking a forensic examination

TN-5425: Networking with Windows Server 2016

Course Overview:

Course two of a three course series to obtain a Server 2016 MCSA certification. This 5-day course provides the fundamental networking skills required to deploy and support Windows Server 2016 in most organizations. It covers IP fundamentals, remote access technologies, and more advanced content including Software Defined Networking.

The course leads directly to preparing for the(MCSA):Windows Server 2016 exam “70-741: Installation, Storage, and Compute with Windows Server 2016”. It also maps to Microsoft’s course 20741A, and is part of the Server 2016 MCSA certification.

Attendees to TN-5425: Networking with Window Server 2016 will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Plan and implement an IPv4 network
Implement Dynamic Host Configuration Protocol (DHCP)
Implement IPv6
Implement Domain Name System (DNS)
Implement and manage IP address management (IPAM)
Plan for remote access
Implement DirectAccess
Implement virtual private networks (VPNs)
Implement networking for branch offices
Configure advanced networking features
Implement Software Defined Networking

Prerequisites:

A basic understanding of networking fundamentals
Experience working with Windows Server 2008 or Windows Server 2012
Experience working in a Windows Server infrastructure enterprise environment
Knowledge of the Open Systems Interconnection (OSI) model
Understanding of core networking topologies and architectures such as local area networks (LANs), wide area networks (WANs) and wireless networking
Basic knowledge of the TCP/IP protocol stack, addressing and name resolution
Experience with and knowledge of Hyper-V and virtualization
Hands-on experience working with the Windows client operating systems such as Windows 8.1 or Windows 10

Liked the class? Then let everyone know!

CompTIA

Increase your credibility, job security, and career opportunities by reaching your goal and getting certified! TechNow offers many CompTIA bootcamp style courses in which we administer an exam on the last day of class. We have a proven testing program that will get you the results you want!

PM-232: Product Owner and Scrum Master Roles in AGILE using SCRUM

Course Overview:

This course details how a well-educated Product Owner and a knowledgeable Scrum Master can work together to deliver a successful product with Agile principles using SCRUM approach. Designed specifically for students who want to learn the mechanics of an Agile / Scrum team being led by a Product Owner and a Scrum Master.

This course offers a firm grasp of Agile principles as they relate to new product development. If you need to learn what is required to lead or participate in an Agile effort using the SCRUM approach within your organization, this course covers the Agile adaptive life cycle framework and everything in between.

Attendees to PM-232: Product Owner and Scrum Master Roles in AGILE using SCRUM will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 2 Days

Course Objectives: At the conclusion of this course, students will be able to:

Understand the Scrum Flow, the core components of the Scrum framework
Understand the principles of empirical process control
Understand the scope of the Product Owner role in detail
Understand the scope of the Scrum Master role at a high level
Understand the scope of the Scrum team roles and why there is no project manager
Understand how the Scrum Master measures team velocity
Understand the importance of having the product vision as an overarching goal galvanizing the entire Scrum team
Understand the relationship between the vision and the product roadmap
Understand the different estimation levels in Scrum
Understand what the Product Backlog is and what it is not
Understand Product Backlog grooming
Understand that Scrum planning is adaptive, iterative, incremental, and collaborative

Target Student:

Designed specifically for Agile project team members, product owners, project leaders and senior managers or anyone wanting to understand the Agile Framework.

Comments

Latest comments from students

Liked the class? Then let everyone know!

TN-515: Implementing Cybersecurity and Information Assurance Methodologies

Course Overview:

Learn to protect yourself and your company against hackers, by learning their tools and techniques, and then testing your network. This course is heavily based on Kali and primarily on Metasploit. In TN-515: Implementing Cybersecurity and Information Assurance Methodologies class you will learn the step by step process that hackers use to assess your enterprise network, probe it & hack into it, utilizing a mixed-platform target environment including Windows, Linux, Solaris, and Cisco. This course is 90% hacking, but defenses for demonstrated hacks will be discussed. If you want to know the ins and outs of the hacks presented in this course, then this is the course for you.

Attendees to TN-515: Implementing Cybersecurity and Information Assurance Methodologies Class Attendees will receive TechNow approved course materials and expert instruction.

Dates/Locations:

No Events

Duration: 5 Days

Course Objectives:

Introduction to Pen Testing using the PTES model
Metasploit Basics
- MSFconsole, MSFcli, Armitage, MSFpayload, MSFencode, NasmShell
Intelligence Gathering
- Nmap, Databases in Metasploit, Port Scanning with Metasploit
Quick Intro to Ruby
- Writing a simple Ruby script to create a custom scanner
Vulnerability Scanning
- Importing Nessus Results
- Scanning with Nessus from Within Metasploit
Exploitation
- Using the Metasploit Framework and console to exploit
Meterpreter
- Compromising a Windows System
- Attacking MS SQL, xp_cmdshell
- Dumping Usernames and Passwords, extracting and dumping hashes
- Pass the Hash and Token Impersonation
- Pivoting
- Railgun
- Using Meterpreter Scripts: Migrating a process, Killing AV, Persistence
Avoiding Detection
- Creating Stand-Alone Binaries with MSFpayload
- Encoding with MSFencode and Packers (go Green Bay:)
Exploitation Using Client Side Attacks
- Introduction to Immunity Debugger
- Using Immunity Debugger to Decipher NOP Shellcode
Metasploit Auxiliary Modules
Social Engineer Toolkit (SET)
- Spear-Phishing, Web Attack
- Creating a Multipronged Attack
Creating Your Own Module
- Adapt an existing Module
- Add some PowerShell and Run the Exploit
Meterpreter Scripting
Capture The Flag Exercise

Prerequisites:

This is an advanced Cybersecurity and Information Assurance Course which requires basic Windows & UNIX competency
Certification or 2 years of experience in these operating systems is highly recommended
An understanding of TCP/IP

Comments

Latest comments from students