Computer Hacking Forensic Investigator – CHFI. v9

• The computer forensic investigation process and the various legal issues involved

• Evidence searching, seizing, and acquisition methodologies in a legal and forensically sound manner

• Types of digital evidence, rules of evidence, digital evidence examination process, and electronic crime and digital evidence consideration by crime category

• Roles of the first responder, first responder toolkit, securing and evaluating electronic crime scene, conducting preliminary interviews, documenting electronic crime scene, collecting and preserving electronic evidence, packaging and transporting electronic evidence, and reporting the crime scene

• Setting up a computer forensics lab and the tools involved in it

• Various file systems and how to boot a disk

• Gathering volatile and non-volatile information from Windows

• Data acquisition and duplication rules

• Validation methods and tools required

• Recovering deleted files and deleted partitions in Windows, Mac OS X, and Linux

• Forensic investigation using AccessData FTK and EnCase

• Steganography and its techniques

• Steganalysis and image file forensics

• Password cracking concepts, tools, and types of password attacks

• Investigating password protected files

• Types of log capturing, log management, time synchronization, and log capturing tools

• Investigating logs, network traffic, wireless attacks, and web attacks

• Tracking emails and investigate email crimes

• Mobile forensics and mobile forensics software and hardware tools

• Writing investigative reports

Who Is It For?

The CHFI program is designed for all IT professionals involved with information system security, computer forensics, and incident response.

Target Audience

• Defense and Military personnel

• Banking, Insurance, and other professionals

• Government agencies

• IT managers

• Attorneys, legal consultants, and lawyers

• Law enforcement officers

• Police officers

• Federal/ government agents

• Detectives/ investigators

• Incident response team members

• Information security managers

• Network defenders

• IT professionals, IT directors/ managers

• System/network engineers

• Security analyst/ architect/ auditors/ consultants

WHY CHFI?

• EC-Council is one of the few organizations that specialize in information security (IS) to achieve ANSI 17024 accreditation for its Computer Hacking Forensic Investigator certification

• The CHFI v9 program has been redesigned and updated after thorough investigation including current market requirements, job tasks analysis, and recent industry focus on forensic skills

• It is designed and developed by experienced subject matter experts and digital forensics practitioners

• CHFI is a complete vendor-neutral course covering all major forensics investigations technologies and solutions

• CHFI has detailed labs for the hands-on learning experience. On average, approximately 40% of training time is dedicated to labs

• It covers all the relevant knowledge-bases and skills to meets regulatory compliance standards Such as ISO 27001, PCI DSS, SOX, HIPPA, etc.

• The student kit contains a large number of white papers for additional reading

• The program presents a repeatable forensics investigation methodology required from a versatile digital forensic professional which increases employability

• The student kit contains several forensics investigation templates for evidence collection, chain-of-custody, final investigation reports, etc.

• The program comes with cloud-based virtual labs enabling students to practice various investigation techniques in a real-time and simulated environment

What’s New In CHFI v9

• 14 comprehensive modules and 39 labs

• More than 40 percent of new labs

• More than 400 new/updated tools

• Classroom-friendly curriculum with a diagrammatic representation of concepts and examples

• New and rich presentation style with eye-catching graphics

• Coverage of latest operating systems

• Updated patch management and testing environment

• Well tested, result-oriented, descriptive, and analytical lab manual to evaluate the presented concepts

Course Outline

CHFI v9 curriculum is a comprehensive course with 14 training modules covering major forensic
investigation scenarios