New student deal: up to 40% off | Sign up now to get courses for as low as $230.0 each. New users only.


Windows Systems Forensic Analysis

Course Code: IFIS/SCE/DF002

About this Course

You cannot protect what you do not know, and understanding forensic capabilities and artefacts is a fundamental cog of information security. This course centres on building in-depth digital forensics knowledge of Microsoft Windows operating systems. You will learn how to recover, analyse, and substantiate forensic data on Windows systems, track particular user activity on your network, and organize findings for use in incident response, internal investigations, and civil/criminal proceedings. You will be able to use your new skills to validate security tools, enhance vulnerability assessments, identify insider threats, track hackers, and improve security policies.

Course Outline

  • Windows Digital forensics
  • Windows Registry Forensics and Analysis
  • USB Devices and Shell items
  • E-mail, Key Additional Artifacts and Event logs
  • Web Browser Forensics

What You Will Learn?

  • Assess the risk of fraud within your organization and respond when it is identified
    Detect and investigate fraud with the use of data analytics
    Collect documents and electronic evidence needed in the course of an investigation
    Perform effective information-gathering and admission-seeking interviews.
    Discern legal and regulatory concerns related to internal investigations
  • Learn event log analysis techniques and use them to determine when and how users logged into a Windows system, whether via a remote session, at the keyboard, or simply by unlocking a screensaver
  • Determine where a crime was committed using Registry data to pinpoint the geo-location of a system by examining connected networks and wireless access points
  • Determine the number of times files have been opened by a suspect through browser forensics, shortcut file analysis (LNK), e-mail analysis, and Windows Registry parsing

Laptop Requirements

  • CPU: 64-bit Intel i5/i7 (4th generation+) – x64 bit 2.0+ GHz processor or more recent processor is mandatory for this class (Important – Please Read: a 64-bit system processor is mandatory)
  • 8 GB (Gigabytes) of RAM or higher is mandatory for this class (Important – Please Read: 8 GB of RAM or higher of RAM is mandatory and minimum. For best experience, 16GB of RAM is recommended.)
  • Wireless 802.11 Capability
  • USB 3.0
  • 250+ Gigabyte Host System Hard Drive minimum
  • 200 Gigabytes of Free Space on your System Hard Drive – Free Space on Hard Drive is critical to host the VMs we distribute
  • Students should have the capability to have Local Administrator Access within their host operating system and BIOS settings

Target Audience

  • This course is for Application Security Professionals interested in Mobile Application Security
  • If you are trying to automate the cumbersome process of Mobile Application Security Assessment; Don’t hesitate, this is for you.
  • If you want to learn Mobile Application Security, this course is probably not for you.

Duration and Fees

Duration: 2 days
Pricing: $250

Leave a Reply

Your email address will not be published. Required fields are marked *


Subscribe to Our Newsletters

Chat with us
Chat with us
Questions, doubts, issues? We're here to help you!
None of our operators are available at the moment. Please, leave your details and we will get back to you shortly. Include your phone number in the message
Our operators are busy. Please try again later
Have you got question? Write to us!
Thank you for chatting with us. Please contact us anytime you have a question
Was this conversation useful? Vote this chat session.
Good Bad
Scroll to Top