Windows 10 Advanced Forensic Analysis
The Spyder Forensic Advanced Windows® 10 Forensic Analysis course will give participants unbiased knowledge and skills necessary to analyze artifacts left behind through system and user interaction with the host system, utilizing industry standard tools and open source applications to explore the data in greater depth by learning how applications function and store data throughout the system.
Students will learn to use various applications and utilities to successfully identify, process, understand and document numerous Windows® artifacts that are vitally important to forensic investigations. The participant will gain knowledge on how to process the chromium Edge browser, BitLocker encryption, Windows® Action Center, TimeLine and other Windows® 10 specific artifacts. The course includes gaining in-depth knowledge of JumpLists, Registry analysis and prefetch files and how they relate to the investigation and conclude with an in-depth look at OneDrive and synchronization processes between trusted devices. SQLite forensics plays a major role in the analysis of data therefore students will gain detailed knowledge in scripting and data exploitation.
Students will use a variety of open source and leading forensic applications to examine key artifacts through multiple hands on labs and student practical’s.
This course can be delivered by Virtual Class (Live Remote)
What is Live Remote Synchronous Training?
Remote Synchronous Training (RST) allows the attendee to participate in a structured training courses remotely, in the comfort of your own office. It eliminates travel costs and provides a fully interactive environment, just like being in the classroom! RST delivery is specifically designed to simulate a live learning environment. Students have two-way communication with the instructor as well as the other students in the class using a typical hardware setup from their remote location. Instructors can monitor and interact with all students at the same time. When needed, instructors can assist students by physically interacting with his/her assigned machine in the Spyder Forensics remote classroom.
Why choose a Remote class?
Content is delivered exactly the same as in our live classes · Full interaction with the trainer and other course attendees · No travel costs and enjoy the class at your preferred location · Receive the same courseware as an in-person class, i.e. 400+ page color printed student manual for post class reference, USB with datasets and student files · Use of unique datasets developed by Spyder Forensics covering all artifacts covered in this class and others in our curriculum · Post class access the Spyder Forensics Academy (LMS) for supplementary courseware and online electronic version of the training manual
What you will need:
A computer (Windows or Apple) connected to the internet allowing access to GoToTraining™ for instructor delivery and Splashtop™ to interact with the remote classroom PC · A microphone to interact via voice with the class (not required as Chat window is always available) · Speakers to hear the class being delivered · Preferred 2 monitors to open multiple windows (GoToTraining and RemotePC windows)
Duration - 4 Days
Dates & Locations
- 17.10.22 - Available Virtual Class (Live Remote)
- 13.02.23 - Available Virtual Class (Live Remote)