Home

Instructors

Prerequisites

Textbook

Grading

Schedule

Lectures

Announcements

Labs/Homeworks

Exams

Projects

Dates

Mypoly

Isis

Poly Logo

This course covers the all technical, legal, and law enforcement aspects of digital forensics. The course covers following topics:

  • Real world incidents (why do we need forensics)
  • Incident response process
  • Preparing for incidence response (building a forensic ready infrastructure)
  • After detecting an incident
  • Live data collection from Windows
  • Live data collection from Unix
  • Forensic duplication (copying harddrives)
  • Network based evidence
  • Evidence handling
  • Computer storage fundamentals
  • Data analysis techniques
  • Investigating windows systems
  • Investigating Unix systems
  • Analyze network traffic
  • Investigate hacker tools
  • Investigate routers
  • Writing forensic reports



Announcements

LAB SCHEDULE


2005-05-01:
  • Module 10: Network Forensics was uploaded into Lecture section
  • Module 11: Security Audits was uploaded into Lecture section

2005-04-19:
  • Module 9: Network Forensics was uploaded into Lecture section

2005-04-12:
  • Module 7: Host Forensics (Linux) was uploaded into Lecture section
  • Module 8: Host Forensics (Windows) was uploaded into Lecture section