2020-2021 Catalog 
    
    Aug 06, 2020  
2020-2021 Catalog

CNT 260 - Cybersecurity Forensics


Description: Application of cybersecurity forensics techniques with a focus on investigating and analyzing network traffic and understanding legal requirements. Use of common digital forensics tools to gather, analyze and preserve evidence in response to an incident.

Prerequisites: CNT 135 

Credits: 3
Lecture: 2
Lab: 2

Course Content:
  1. The cybersecurity forensics profession
  2. The forensics laboratory
  3. Data acquisition
  4. Processing crime scenes
  5. Operating system forensics
  6. Digital forensics tools
  7. Digital forensics analysis
  8. Virtual machine and network forensics
  9. Digital forensics expert testimony

Learning Outcomes:
  1. Describe the field of digital forensics and explain how to prepare for computer investigations. (1) 
  2. List the requirements for a digital forensics lab. (2)
  3. Use data acquisition tools and describe data acquisition methods. (3)
  4. Describe how to collect evidence at an incident scene and list the steps for preparing and storing digital evidence. (4)
  5. Work with Windows, Linux, and Macintosh operating systems to collect digital forensics data. (5)
  6. Describe and evaluate a variety of digital forensics hardware and software tools. (6)
  7. Analyze and validate digital forensics data. (7)
  8. Describe the methods for analyzing virtual machines and the procedures for examining network data and log files. (8)
  9. Explain the guidelines for giving expert witness testimony. (9)