Home About
Services
Consulting and Expertise Security Management Security Governance Business Continuity Security Awareness
Formations
SECURITE OFFENSIVE - ETHICAL HACKING
Cybersecurity Awareness Hacking & Security: Fundamentals Hacking & Security: Advanced Hacking & Security: Expert Certified Ethical Hacker v10 Penetration Testing: Audit Simulation Web Site Audit Social Engineering and Countermeasures Conducting a Security Audit: SI Audit Method Certified Web Application Security Pentester Python for Pentesting Advanced Exploitation with Metasploit Certified of Cloud Security Knowledge Intelligent Android Application Testing Computer Hacking Forensic Investigator v9
INFORENSIQUE
Computer Hacking Forensic Investigator v9 Advanced Forensic Analysis and Incident Response Mobile Device Forensics
MANAGEMENT
ISO 27001: Certified Lead Implementer ISO 27001: Certified Lead Auditor ISO 27005: Certified Risk Manager ISO 27005: Certified Risk Manager + EBIOS Method Certified Information Systems Auditor Certified Information Systems Security Professional Certified Data Protection Officer Certified Information Security Manager ISO 31000: Certified Risk Management ISO/IEC 22301 Certified Lead Auditor ISO/IEC 22301 Certified Lead Implementer ISO/IEC 27032 Certified Cybersecurity Manager ISO/IEC 27034 Certified Lead Auditor ISO/IEC 27034 Certified Lead Implementer ISO/IEC 27035 Lead Incident Manager Certified Lead Pen Test Professional ISO 9001 Certified Lead Auditor ISO 9001 Certified Lead Implementer
SECURITE DEFENSIVE
Android Device Security Awareness >Linux Security Windows Security Network Security Technology Watch Security SIEM Implementation Secure Web Development: Python Session Secure Web Development: PHP Session
Team Contact

Language

FR EN AR
Home / Training / Advanced Forensic Analysis and Incident Response

Advanced Forensic Analysis and Incident Response

Master incident response and forensic analysis in heterogeneous environments.

Forensics
Incident Response
Advanced Training

Objective

This course will teach you how to set up a complete forensic analysis procedure in heterogeneous environments. You will approach incident response from an organizational perspective. You will also study the appropriate methodologies and tools used in the technical phase of incident response, namely forensic analysis (or post-incident). At the end of the training, you will be able to preserve digital evidence for subsequent analysis and present it in the context of legal proceedings.

Specific objectives:

  • Be able to define and implement a rigorous incident response process
  • Properly collect the necessary evidence for quality analysis and potential legal action

Prerequisites

  • Good general IT knowledge

General Information

  • Code: AIARI
  • Duration: 3 days
  • Hours: 8:30 AM - 5:30 PM
  • Location: Training Center, North Urban Center, Tunis

Target Audience

  • IT professionals in charge of information system security, incident response, or legal investigation

Resources

  • Course material
  • 40% demonstration
  • 40% theory
  • 20% practical exercises

Training Program

  • Day 1: Fundamentals of Incident Response and Forensic Analysis
    • Setting up incident response
    • Preparing for incident response
    • Detection and analysis
    • Classification and prioritization
    • Notification
    • Containment
    • Forensic investigation
    • Eradication and recovery
    • Forensic analysis and French legislation
    • Methodology and tools for forensic analysis
      • Organizing
      • Choosing your tools
      • Following scientific methods
      • Presenting conclusions in a report
  • Day 2: Approach to Forensic Analysis in Key Technical Areas
    • Data collection and duplication
    • Understanding Windows, Linux, and BSD file systems
    • Outils et moyens de collecte
    • Recovering deleted partitions and files
    • Network attack analysis
      • Capture sources
      • Review of common attacks
    • Memory dump recovery and analysis (Volatility)
  • Day 3: Targeted Analysis and Advanced Exercises
    • Log file analysis and event correlation
      • Manual approach
      • Using an indexer (ELK)
    • Browser forensic analysis
    • Email forensic analysis
    • Practical application on real cases

Do not hesitate to contact our experts for any additional information, free study and calculation of an audit service.

Information security is essential for any company that needs to protect and improve its information assets.

Contact us