Incident Response and Network Forensics Training

Incident Response and Network Forensics Training

Introduction:

Incident Response and Network Forensics Training with detailed hands-on lanbs

Enosecurity offers this hands-on Incident Response and Network Forensics Training course that covers the essential information you need to know in order to properly detect, contain and mitigate security incidents. Security incidents are a way of life in the modern world, and how organizations respond to them makes a massive difference in how much damage is ultimately done. In this 5 day Incident Response and Network Forensics Training course, you learn the ins and outs of incident response, as well as the tools of the trade used by incident responders on a daily basis.

This Incident Response and Network Forensics Training course from Enosecurity helps you fully understand how systems are compromised and what traces are left behind by attackers on the network, on disk, and in volatile memory. The Incident Response and Network Forensics training course addresses cutting edge attack vectors as well as tried and true methods for compromise. You leave the 5 day Incident Response and Network Forensics Training course with the knowledge of how to prevent incidents and the skills to defend against a security incident if it does happen.

Customize It:

With onsite Training, courses can be scheduled on a date that is convenient for you, and because they can be scheduled at your location, you don’t incur travel costs and students won’t be away from home. Onsite classes can also be tailored to meet your needs. You might shorten a 5-day class into a 3-day class, or combine portions of several related courses into a single course, or have the instructor vary the emphasis of topics depending on your staff’s and site’s requirements.

Audience/Target Group

• Incident responders needing to quickly address system security breaches
• Threat operations analysts seeking a better understanding of network based malware and attacks
• Forensic investigators who need to identify malicious network attacks
• Those individuals who want to learn what malicious network activity looks like and how to identify it

Incident Response and Network Forensics TrainingRelated Courses:

Duration: 5 days

Skilled Gained:

• The Incident Response Process
• Event/Incident Detection
• Sources of Network Evidence
• TCP Reconstruction
• Flow Analysis
• NIDS?NIPS
• Log Analysis
• Firewall log Investigation
• Log Aggregation
• Network Artifact Discovery
• DNS Forensics and Artifacts
• NTP Forensics and Artifacts
• HTTP Forensics and Artifacts
• HTTPS and SSL Analysis
• FTP and SSH Forensics
• Email Protocol Artifacts
• Wireless Network Forensics

Course Content:

• Constructing your Live Incident Response Toolkit
• Perform Vulnerability Analysis
• The Incident Management Knowledgebase
• Timeline Analysis
• Triage & Analysis
• Volatile Data Sources and Collection
• Identify Rogue Processes
• Volatility Walkthrough
• Defensive review and recommendations
• Improving defenses
• Secure credential changing process and monitoring
• Increased monitoring period – when and how long
• Validate the system.
• Enable constituents to protect their assets and/or detect similar incidents.
• Report and coordinate incidents with appropriate external organizations
• CSIH Domains

Labs

Request More Information

Time Frame: 0-3 Months4-12 Months

Print Friendly, PDF & Email

No Comments Yet.

Leave a comment