Print Course information
Email me when offered
Return to Course Catalog
Courses and Programs
Security: Windows Forensic Analysis
Computer Forensics is a new field in Computer Science and is becoming more and more important every year. Less than 25 years old, it has changed much in its short history. The age of “Nintendo Forensics”, where you could just push buttons to do most analysis, is over. Nowadays, you must work on live systems leveraging tools which require interaction with the examiner. This beginning class focuses on the Windows OS. You will gain experience with the practical side of investigation through lots of hands-on experimental practice with many different programs and technologies.
Upon completion of this course, you should be able to:
Define what is Computer Crime
Understand the need for live investigation
Set up a Chain of Custody
Collect data from a live Windows OS
Explain the difference between live and postmortem analysis
Dump the contents of physical RAM for analysis
Analyze memory dumps
Analyze the registry
Understand files and the file system forensically
Understand rootkits and their detection
Use many tools and programs e.g. Wireshark, Netcat
This course is for anyone interested in Computer Forensics
Use of Windows XP, 7 or equivalent.
No classes currently available.
to continue searching for courses.
Sales and Customer
Thanks for dropping by!
Stay updated by
subscribing to the
Join us on
South Puget Sound
Powered by CampusCE
Education Management System