5-9 Oct 2015
5-9 Oct 2015
17 Aug 2015
300 € (no fee for the Sponsoring Nations, Contributing Nations and NATO bodies)
This course provides theoretical introduction of advanced network and host forensic methods, and also opportunity to prove their effectivity during the hands-on investigations.
Five days course for forensics practitioners where network monitoring and digital forensics techniques will be explained and practically examined.
The aim of the course is to exercise forensics practitioner's ability of intrusion analysis. A hands-on lab-developed from real targeted attacks leads analysts through the challenges and solutions. They will identify where the initial targeted attack occurred and which systems were compromised.
The workshop covers real-world use cases and works with the participants to implement them. This includes building and configuration of tools, creation of dashboards, guidelines and tips on processing pcaps, designing a system to scale, choosing hardware, and managing the lifecycle of network data captures.
Technical IT staff who are used to working with IT in roles whose normal duties include forensic analysis and who would like to build efficient near real-time digital forensics solutions.
Please be advised about the strong technical nature of this course: this course is NOT for decision makers, leaders, or administrative personnel. It is a highly technical course of instruction designed for technicians that actively engage in hands-on digital forensic activities as part of their duties. English language skill comparable to STANAG 6001, 188.8.131.52. is required.
Note that we most strongly discourage the participation of students who do not fulfil aforementioned prerequisites since the course contains advanced lab sessions assuming this knowledge. Therefore the presence of unskilled attendants in the audience is likely to hinder the overall progress of the course.