Course

Course Summary
Credit Type:
Course
ACE ID:
DDCI-0006
Organization's ID:
IT270
Organization:
DC3 Cyber Training Academy
Location:
Classroom-based
Length:
80 hours (10 days)
Dates Offered:
Credit Recommendation & Competencies
Level Credits (SH) Subject
Upper-Division Baccalaureate 5 Networking, Data Communications, Information Systems, or Computer Forensics
Description

Objective:

The course objective is to provide Department of Defense and federal law enforcement cyber investigation analysts with a scenario-based course that teaches them how to conduct detailed forensic media and log file analyses to determine the specifics of a Linux-based intrusion.

Learning Outcomes:

  • Use forensic tools and techniques to analyze network traffic of an intruder and correlate the findings with forensic evidence found on a Linux victim machine
  • Prepare a forensic examination platform running the Linux operating system
  • Analyze a compromised system running the Linux operating environment by analyzing both system and log files
  • Complete a detailed intrusion analysis report

General Topics:

  • Using tools and analysis techniques presented in class
  • Analyzing network traffic of an intruder and correlate the findings with forensic evidence found on a Linux victim machine
  • Preparing a forensic examination system running the Linux operating environment
  • Analyzing a compromised system running the Linux operating environment by analyzing both system and log files
  • Completing a detailed intrusion analysis report
Instruction & Assessment

Instructional Strategies:

  • Audio Visual Materials
  • Case Studies
  • Classroom Exercise
  • Computer Based Training
  • Discussion
  • Laboratory
  • Lectures
  • Practical Exercises
Supplemental Materials