Encase v6 Philippines
Saved (0) | History (40)
Categories |

Encase v6

864 views | 1 post
Expire On: November 30, 2009 06:17PM

Advertisement Details

Encase v6
View All Images
Advertisement ID :
1094336
Category : Computers and Software
Location : Pasig City, Metro Manila
Ads Classification : Establishment
Address : philippines stock exchange exchange rd. pasig city
Date Updated : October 16, 2009 (posted January 26, 2009)
Short URL : http://sulit.com.ph/1094336

[ Save Ads | Get Embed Code | Bookmark | Twitter | Tell a Friend | Report ]

Description


"Global Knowledge IT Provider"

EnCase® v6 Computer Forensics
Inclusive of Training Materials, Certificate and AM/PM Snack and Lunch)
Venue: 25th Flr. Unit 2502b West Tower, Philippine Stock Exchange, Ortigas Center Pasig City
CPE credits: 32 | Level: Introductory | Prerequisites: Basic computer skills. Advance preparation for this course is not required.
This hands-on course involves practical exercises and real-life simulations. The class provides participants with an understanding of the proper handling of digital evidence from the initial seizure of the computer/media to acquisition, and then progresses to the analysis of the data. It concludes with archiving and validating the data. Delivery method: Group-Live.

Students attending this course will learn the following:
What constitutes digital evidence and how computers work
An overview of the EnCase Computer Forensic Methodology
Basic structures of the FAT and NTFS file systems
How to create a case and how to preview/acquire media
How to conduct basic keyword searches
How to analyze file signatures and view files
How to restore evidence
How to archive files and data created through the analysis process
How to prepare evidence for presentation in court
How to verify the evidence file
WHO SHOULD ATTEND
This course is intended for IT security professionals, litigation support and forensic investigators Participants may have minimal computer skills and may be new to the field of computer forensics.
DAY 1 OUTLINE
DAY 2 OUTLINE
ØEnCase Concepts
·Case File
·Evidence File
·Case File Backup
·Configuration Files
ØWhat constitutes Digital Evidence
·Computers as an instrumentality of the crime
·Computers as a repository of evidence
·Examples of mediums of storing digital evidence
ØHow Computer Works
·Power Sequence
oBIOS
oPOST
oEtc.
·Bits/Bytes/Hex/Binary
ØEncase Navigation
ØDiskette Preview / Acquisition
·Create Case
·Options
Day one provides an understanding of the proper handling of digital evidence from seizure to acquisition. Students receive a basic overview of how computers function, as well as the constitutes digital evidence
ØNTFS/FAT File Systems
·How these file systems track data
·What happens when a file is created
·What happens when a file is deleted
ØCreating a Boot Disk
·Why a forensically sound boot disk is needed
·Components of a forensically sound boot disk
ØHard Drive Preview and Acquisitions
·Physical disk versus logical drive
·Fastbloc
·DOS based via disk to disk
·DOS based via crossover cable
ØCreation of Keywords and Searching
·Global versus Case Specific
·Selecting Keywords
·Selecting where/what to search
·Viewing results
ØBookmarking/Preserving Findings
·Highlighting sections of data
·Pointing to file(s)
Day two begins with a discussion of the FAT file systems as well as an overview of the NT file system. Hard disk acquisition is covered, using both a forensically sound boot diskette, as well as a hardware write blocking device. Attendees will learn how to properly preview a computer system prior to acquisition, as well as explore keyword searching and bookmarking of relevant data.
DAY 3
DAY 4
ØFile Types
·Icons/Description column
ØBookmarking Techniques
·Pointing to file(s)
·Comments
·Organizing Report
ØSignature Analysis
·Search Button
·All or Selected
·Compares Extension to Header
·Interpreting results
ØInstalling External Viewers
·Link Application to EnCase
·Can link file extensions to Application
ØCopy/Unerase Options
ØRestoring Evidence
ØReacquiring an Evidence File
·Don't need original hardware to change options
·Quick Reacquisition
Day three includes more complex bookmarking of data, and examination of file signatures to accurately identify file types. Attendees will install external viewers within EnCase and learn how to copy data from within an evidence file. Students learn how to
restore an evidence file back to physical media and reacquire an evidence file with different options.
ØArchiving/Reopening an Archived Case
·What to archive
·Specify path to EnCase of Evidence file to reopen case
ØVerification of Evidence File
·Change 1 bit; EnCase detects change
·Manually re-verify at any time
ØTimeline
·Define four Date/Time stamps
ØWindows Artifacts
·User Accounts
·Recently Accessed Files
·Internet Cache
·Desktop/My Documents
ØSearching Unallocated Space
·Use file header for image
·Display image
Day four explores how to archive a completed case, as well as how
to reopen this case if needed in the future. Attendees will observe
how EnCase can detect and identify any changes to the content
of an evidence file, as well as take a detailed look at the Timeline
view within EnCase. Pertinent areas of interest within the Windows
operating system and user accounts are explored as well as locating
data in unallocated space.
EnCase® v6 Computer Forensics II on June 16-19, 2008
Fee: $1,200.00 12%VAT(Inclusive of Training Materials, Certificate and AM/PM Snack and Lunch)
Venue: 25th Flr. Unit 2502b West Tower, Philippine Stock Exchange, Ortigas Center Pasig City
CPE credits: 32 | Level: Intermediate | Prerequisites: EnCase® Computer Forensics I. Advance preparation for this course is not required.
This hands-on course is designed for investigators with strong computer skills, prior computer forensics training, and experience using the EnCase forensic software. This course builds upon the skills covered in the EnCase Computer Forensics I course and enhances the examiner's ability to work efficiently through the use of the unique features of EnCase.
*Students must understand evidence handling; the structure of the evidence file; creating and using case files; data acquisition methods including DOS based, hardware write protected, crossover cable and disk to disk; recovering deleted files and folders in a FAT environment; keyword searches across logical and physical media; creating and using EnCase bookmarks; file signatures and signature analysis; and locating and understanding Windows® artifacts. Delivery method: Group-Live.

Focusing on investigations common to the private sector, students will learn about the following:
How to create and use of logical evidence files
How to locate and recover deleted partitions and folders
How to conduct keyword searches and advanced searches using GREP
Students will gain an understanding of the EnCase Virtual File System (VFS) and Physical Disk Emulator (PDE)
Students will learn about the Windows® Registry
Students will learn how to deal with compound file types
How to export files, directories and entire volumes
How to identify files using hash values and building hash libraries
How to identify Windows XP operating system artifacts such as link files, recycle bin, and user folders
How to prepare reports and evidence for presentation in court
How to recover artifacts such as swap files, file slack, and spooler files
How to recover printed and faxed pages
WHO SHOULD ATTEND
This course is intended for IT security professionals, litigation support and forensic investigators. Participants should have attended the EnCase Computer Forensics I.
DAY 1
DAY 2
ØHow the EnCase Evidence File is Stored and Verified
ØEncase Forensic Edition Overview
·Data flow
·Navigating EnCase
ØLogical Evidence Files
·What are they?
·Why would I use them?
·How to create them
ØSingle Evidence Files
·What are they?
·Why would I use them?
·How to create them
ØSoftware Write Protection
·Fast Bloc SE
ØIntroduction to NTFS
·Understanding the Windows® New Technology File System
ØHandling Formatted or Repartitioned Media
ØPartition recovery
·Folder Recovery
Day one provides an understanding of EnCase concepts. Students will learn how an evidence file is acquired, verified, added to a case, and stored. They will learn how to create and use logical evidence files and single evidence files. Students will receive hands-on imaging training using FastBloc SE.
ØHash Analysis
·Using file hashes to improve accuracy and efficiency
ØCompound files
·An overview of compound files
·Mounting compound files
·Searching compound file types
Ø- Windows Registry
·Appropriate keywords
·How EnCase searches the evidence file
ØVFS / PDE
·Using Virtual File System
·Using Physical Disk Emulator
ØUsing GREP to focus searches. GREP allows the examiner to create concise keywords using control characters, reducing false positives and increasing efficiency.
Day two introduces the students to the process of analyzing the evidence. The hashing of files both as a means of identification and as a tool to speed up the searching process is covered.
Students also take a first look into the Windows Registry and learn how, why and when to use VFS and PDE. We continue to build on the students' skill sets, moving from general keyword
searches and file type analysis to advanced keyword searches using GREP.
DAY 3
DAY 4
ØQuickly locating file system artifacts unique to the NTFS file system
ØDe-constructing link files to reveal artifacts that indicate the who, what, when and where of file manipulation.
ØE-mail recovery and examinations including Microsoft Outlook, Outlook Express and
Øweb based e-mail.
ØRecovering and analyzing e-mail attachments
ØInternet history concepts and analysis using Internet Explorer
ØUnderstanding and recovering documents that have been printed
ØRecycle Bin analysis to reveal important information about deleted files
Day three moves to specific analysis of common artifacts that cannot normally be locatedthrough keyword searches. This analysis can often provide vital information to investigations by
revealing data that can provide a clear indication of a user's activities. We look at how EnCase handles common e-mail files and Internet history.
ØHandling and acquiring Flash Memory and artifacts
ØReporting
·How and what to report after the investigation is completed
·Using bookmarks we created to prepare a written report within the EnCase interface
·Exporting the report in an HTML or other format
On day four students learn how to utilize all of the techniques from the previous days to create a
readable, coherent report using EnCase.
GLOBALKNOWLEDGE PHILIPPINES, INC.
2502B West Tower, PSE Bldg. Exchange Road, Ortigas Center, Pasig City, Philippines 1600
Tel. Nos. (632) 683-0969; 637-3657; 0920-709-8298









Uploaded Images

Click image thumbnail to view actual image size [ Get Image / Link Embed Codes ]
Encase v6
Image 1 of 1 [ Get Image Embed Code ]



Tags: IT Training, CISCO, CCNA, LPT, Penetration testing, IT Training, forensics, CHFI, EnCase Training, training, computer training, microsoft, java, linux, linux expert, networking, security, courses, training courses, ethical hacking, CEH, ITIL, softskills,

Automatic Keywords: encase forensic version 6 download, encase 6 rapidshare, encase tutorial, encase version 6 icon descriptions, encase rapidshare, encase training video, download encase forensic, rapidshare encase, tutorial encase, encase icon descriptions

Posted By

Posted by : rezej24
Member Since : October 2, 2008
Last Login : 1 day, 21 hours ago
Feedback : 2 Rating 100.00% [ 2 - Positive | 0 - Negative ] [ Details ]

Contact Details

Address : holy spirit , Metro Manila - Mandaluyong City
Contact Nos. : (632) 721-4380 / 382-4903, 09282365557
Look For : jezer villaflor


Advertisement Discussion

Leave a message for the advertisement owner here (for members only). [ RSS Discussion RSS Feeds ]

[1]
Quote

Report
rezej24
rezej24
posted February 20, 2009 01:12PM
View User Ads Messages
UP!!!!!!!!!!!!!!!!!!!! IT Training, CISCO, CCNA, LPT, Penetration testing, IT Training, forensics, CHFI, EnCase Training, training, computer training, microsoft, java, linux, linux expert, networking, security, courses, training courses, ethical hacking, CEH, ITIL, softskills, security +, network +, ms access 2003, ms word 2003, ms access 2007, ms word 2007,
[1]

Disclaimer: Sulit.com.ph does not control the content posted by members and therefore assumes no responsibility and disclaims any liability for any consequence relating directly or indirectly to any action or inaction you take based on the content, information, services or other materials found in this system [ more details ]

[ Back to top ]
Go To: Advertisement Details | Description | Posted By | Contact Details | Advertisement Discussion
Home > All Categories > Establishments / Business Locator > Computers and Software

  • 1998 OPEL VECTRA CD-WAGON ( ORIG PAINT) | SUVs / AUVs / MPVs / Jeeps / 4WDs | For Sale | P 168,000.00
  • ABERCROMBIE & FITCH SHIRTS FOR SALE | Casual Wear | For Sale | P 200.00
  • POMERANIAN (GRANDAUGHTERS OF CHAMPION) | Dogs | For Sale | P 25,000.00
  • POMERANIAN (GRANDSON OF CHAMPION) | Dogs | For Sale | P 25,000.00
  • APARTMENT FOR RENT 2BR,2BT,TERRACE (ortigas extn) | Apartment / Condominium | For Rent / Lease | P 8,000.00
  • CUSTO BARCELONA BAGS For sale | Luggages / Bags | For Sale | P 370.00
  • CHEAP CORE2DUO LAPTOP | Computers | For Sale | P 22,000.00
  • EARN WHILE CHECKING YOUR EMAIL | Internet / Online Programs | Others
  • HONDA CITY LXI | Cars / Sedan | For Sale | P 140.00
  • How to Earn Money Online | Internet / Online Programs | Offered | P 1,000.00
  • HONDA CITY IDSI | Cars / Sedan | For Sale | P 365.00
  • galant vr body parts | Accessories / Parts for Motorcycles / Scooters | For Sale | P 1,000.00
  • Animal Paper Clips | Other Items | Others | P 210.00
  • Manfrotto 525MVB | Camcorders / Cameras Accessories | For Sale | P 35,000.00
  • Mountain Bike road | Sports and Hobbies | For Sale | P 26,000.00
  • mags 16' rota torque | Accessories / Parts for Cars / SUVs / Trucks / Vans | For Sale | P 29,000.00 | 1 post | 155 views
  • Mini pincher stud | Dogs | For Sale | 1 post | 80 views
  • danelle´s paper bags | Distributors | Offered | P 10.00 | 2 posts | 117 views
  • HONDA ACCORD MATIC | Cars / Sedan | For Sale | P 165,000.00 | 1 post | 59 views
  • COVERED SPACE | Lot / Land / Farm | For Rent / Lease | P 15,000.00 | 2 posts | 195 views
  • Sym Radar 36K (neg) or swap | Motorcycles / Scooters | For Sale or For Swap | P 36,000.00 | 4 posts | 77 views
  • Looking for MALE and FEMALE SHITZU | Dogs | Others | 2 posts | 206 views
  • asus eee 2g for sale 7.5k | Notebooks / Laptops | For Sale or Swap | P 7,500.00 | 3 posts | 277 views
  • RAIDER J 34K SLIGHTLY NEG. | Motorcycles / Scooters | For Sale | P 34,000.00 | 16 posts | 498 views
  • buying female toy dog 7k to 8k | Dogs | Wanted to Buy | 1 post | 6 views
  • looking for a dog shitzu | Pets | Wanted to Buy | P 5,000.00 | 2 posts | 291 views
  • Best Deals on B'NEW 32" Samsung LCD TV's!!! w/ FREEBIES!!! | TVs | For Sale | P 25,500.00 | 1938 posts | 89236 views
  • Honda accord 95 second hand for sale | Cars / Sedan | For Sale | P 125,000.00 | 1 post | 610 views
  • For Sale OR For Swap Honda City LxI 1998 model | Cars / Sedan | For Sale or For Swap | P 185,000.00 | 5 posts | 428 views
  • Condo unit for Sale Cubao Quezon City - Fully furnished ready for occupancy | Apartment / Condominium | For Sale | P 1,200,000.00 | 5 posts | 1208 views
  • WiFi Adapter | Internet Gadgets | For Sale | P 2,200.00 | 64 posts | 35294 views
  • PROJECT 2 HOUSE & LOT (BRAND NEW) | House | For Sale | P 6,200,000.00 | 0 post | 65 views
  • GOOD HEALTH & FINANCIAL EDUCATION. . . @ THE SAME TIME!! | Networking - MLM | Offered | 1 post | 353 views
  • Trigo World Is Looking For Business Center Owners Operators Franchisees AND Satellite... | Franchising | Offered | P 500,000.00 | 0 post | 257 views
  • CUBAO, QUEZON CITY | Commercial / Industrial | For Sale | P 25,000,000.00 | 0 post | 236 views
  • Bag manufacturing and printed umbrellas (for promos and other purposes) Guaranteed... | Souvenirs and Giveaways | For Sale | 22 posts | 9166 views
  • PROMO - NO DOWNPAYMENT/EQUITY SCHEME, Ask for details, Zen Residences "For as low as... | House | For Sale | P 9,616.00 | 1 post | 13141 views
  • → FOR SALE! ← | Corded | For Sale | P 5.00 | 0 post | 172 views
  • LOSS WEIGHT IN 3 WEEKS! TRY SLIM & TRIM | Weight Loss | For Sale | P 1,125.00 | 45 posts | 5941 views
  • AUTHENTIC LOUIS VUITTON SPONTINI (RARE) | Luggages / Bags | For Sale | 0 post | 190 views
  • COUNTRY FURNISHING's LIVING ROOM SET FROM CONTEMPORARY TO EUROPEAN DESIGN... | Family / Living Room | For Sale | P 55,000.00 | 11 posts | 28903 views
  • Have Hour Own Foodcart franchise for only P21,888, NO ROYALTY, NO RENEWAL, NO HIDDEN... | Franchising | Offered | P 21,888.00 | 1 post | 3500 views
  • [BNEW] iPod and iPod Touch Products. NEGOTIABLE! | PDA / Handhelds (Non-phone Devices) | For Sale | P 9,800.00 | 10 posts | 5011 views
  • for sale: honda accord hood 96-97 | Accessories / Parts for Cars / SUVs / Trucks / Vans | For Sale | 1 post | 154 views
  • Food Cart Franchise (Php.21,888.00) One-time Payment!!! Call now @ 685-8206 | Franchising | Offered | P 21,888.00 | 2 posts | 5753 views
  • ISUZU SPORTIVO 2010 - Isuzu Alabang | SUVs / AUVs / MPVs / Jeeps / 4WDs | For Sale | P 1,145,000.00
  • MOTHER & CHILD NUDE | Drawings / Paintings | For Sale | P 4,000.00
  • Hot and sexy JENNA JAMESON Porn Adult Superstars Holloween Plastic Fantasy | Action Figures / Dolls | For Sale | P 2,800.00
  • iphone/ Sciphone i9+++ new ver. of i68, i9+,i9++ (same model: iphone 3G, china phone,... | Cellphone / Cellular / Mobile Phone / Smartphone | For Sale
  • CHRISTMAS TREE and DECORS FOR SALE | Family / Living Room | For Sale
  • 2009 Brand New (bnew) Honda Cars Philippines Pricelist. Civic, Jazz, CRV, City, Accord | Cars / Sedan | For Sale
  • Artificial Virgin Japanese Vagina Toy - (Made in Japan) | Other Items | For Sale | P 1,000.00
  • samsung S5233 STAR WIFI | Cellphone / Cellular / Mobile Phone / Smartphone | For Sale | P 12,290.00
  • Sony PSP GO! - Brand New | Toys, Video Games and Related Items | For Sale | P 13,000.00
  • JAPANESE PORN MAGAZINES | Magazines | For Sale | P 200.00
  • Download Farmville Auto Bot - Farmville Cheats & Hacks Software Bot | Arts / Entertainment | Others
  • Smackdown vs Raw 2010 free psp game download iso cso psx full | Game Cartridges / CDs | For Sale | P 1.00
  • Grand Theft Auto China Town Wars free psp game download iso cso psx full | Game Cartridges / CDs | For Sale | P 1.00
  • Working Special Force/Crossfire Wallhack After Server Maintenance | Game Systems (Consoles) | For Sale | P 200.00
  • HERMES HAND BAG | Luggages / Bags | For Sale | P 17,000.00

Download Sulit.com.ph Toolbar

Sulit.com.ph Toolbar

Help Us Spread the Word About Sulit.com.ph

If you have a website or blog, you can help us spread the word about our great community here. More people discovering our community means more people viewing your ads and more possible clients. You can use the HTML code below to display the Sulit.com.ph Banner.
Buy and Sell Philippines : Sulit.com.ph

Who is Online Online Users

10712 users online: 465 members [ view all ] and 10247 guests

[ Back to top ]
Register Now
Post a Free Ad
Premium Ads
Featured Item/Member
Shout Ads
Shout Your Ads
cproperties
█► FOR SALE ** 1.27 HECTARES LOT ** MULTINATIONAL PQUE ◄█ [view]
a moment ago
angeliavenido
TAX PROBLEMS? Free consultation call/txt 09212333173, 09202677397, (02) 4929017 [view]
4 minutes ago
kuyamau
kuya mau of maupets puppet show host magician [view]
10 minutes ago
scja16
Wholesale fashion dress @ lowest price [view]
18 minutes ago
mallarim96
staying power of a lip and cheek tint,click me [view]
1 hour, 57 minutes ago
cproperties
█► FOR SALE ** 1.27 HECTARES LOT ** MULTINATIONAL PQUE ◄█ [view]
2 hours, 11 minutes ago
ritzylifestyle
Personalized Giveaways and Souvenirs! [view]
2 hours, 14 minutes ago
ameshen
Look Younger in 10 minutes !!! [view]
2 hours, 54 minutes ago
corinakitty
VANIDERM CAPS GLUTATHIONE FREE DELIVERY!!!! GUMANDA AT PUMITI IN A SAFE WAY!!! [view]
3 hours, 31 minutes ago
cproperties
█► FOR SALE ** 1.27 HECTARES LOT ** MULTINATIONAL PQUE ◄█ [view]
4 hours, 17 minutes ago
binocular
Stay AWAY from BAD Networking MLM Companies! [view]
4 hours, 49 minutes ago
ameshen
Beauty Ipod for Sale Look 10 Years Younger in 10minutes! [view]
4 hours, 59 minutes ago
nwired
Want to get FREE VISA MASTERCARD click nyo lang http://a6ad8b9c.zxxo.net [view]
5 hours, 16 minutes ago
dennisangsico
great gift for xmas! bnew air revitalizer air freshner air purifier * [view]
5 hours, 34 minutes ago
golbi
Your MLM business need NOT to be TOO EXPENSIVE! P400 is ENOUGH!!! [view]
5 hours, 48 minutes ago
real03
kumikitang kabuhayan Iternet VERION [view]
5 hours, 50 minutes ago
golbi
Your MLM business need NOT to be TOO EXPENSIVE! P400 is ENOUGH!!! [view]
5 hours, 52 minutes ago
mallarim96
organic cheek tint that last all day,try it and get hooked [view]
5 hours, 59 minutes ago
golbi
Your MLM business need NOT to be TOO EXPENSIVE! P400 is ENOUGH!!! [view]
6 hours, 6 minutes ago
zillionmax
Fast ROI - Excellent Business [view]
6 hours, 26 minutes ago
News / Announcements
More News / Announcements
Sulit Statistics
Total Members: 522880
Registered Last 24 Hours: 573

Total Ads Posted: 1754806
Posted Last 24 Hours: 2063

Total Ads Messages: 1886432
Posted Last 24 Hours: 2342

Total Private Messages: 3273216
Sent Last 24 Hours: 4119

Total Forum Posts: 2771123
Posted Last 24 Hours: 3766

Updated every 5 minutes
Follow Sulit.com.ph on Twitter
Sulit.com.ph
Proudly Pinoy
Encase v6 IT Training, CISCO, CCNA, LPT, Penetration testing, IT Training, forensics, CHFI, EnCase Training, training, computer training, microsoft, java, linux, linux expert, networking, security, courses, training courses, ethical hacking, CEH, ITIL, softskills, - Computers and Software Pasig City Metro Manila encase forensic version 6 download, encase 6 rapidshare, encase tutorial, encase version 6 icon descriptions, encase rapidshare, encase training video, download encase forensic, rapidshare encase, tutorial encase, encase icon descriptions Philippines