    计算机取证培训

Week 1: Digital Forensics Fundamentals Introduction to Incident response digital forensics four-step procedure

Concepts: computer/network/Internet forensic and anti-forensics

Week 2: Unix/Linux fundamentals Unix/Linux incident response tools Unix/Linux file systems (Ext2/Ext3)

Week 3: Unix/Linux Forensic Investigation

Unix/Linux forensics investigation steps and technologies Unix/Linux forensics case studies

Week 4: Windows Incident Response Memory forensics Windows incident response tools

Week 5: Windows fundamentals Windows file systems Windows forensics tools

Week 6: Windows Forensic Investigation

Windows acquisition Windows forensics analysis – registry and other artifacts

Week 7: Advanced artifacts Loadable kernel module rootkits

Steganography hiding, detection and analysis

Week 8: Review and Everything Together