Incident Response Network Forensics

SEC-206

Learn effective detection, response, and remediation strategies that will enable you and your organization to properly contain a security incident. Specifically designed for technical information technology professionals, targeted at technical responders

WHAT'S ON THIS PAGE?

GET QUOTE

Course Overview

COURSE LENGTH:
5-DAY

 


Without a doubt, the sophistication and threats caused by malicious attacks have continued to increase at a rapid level. If you plan on responding to a security incident, you must be able to meet the challenges that these sophisticated attackers present.

InfoSec Institute helps you meet the challenges presented by attackers in this hands-on Incident Response class. You will learn effective detection, response, and remediation strategies that will enable you and your organization to properly contain a security incident.

This five day class has been specifically designed for technical information technology professionals, targeted at technical responders, who respond to computer security incidents. In this course, you will go over many real-world case studies, and gain the skills you need to respond to incidents via hands-on lab exercises.

FEATURED IN

  • Top Intrusion Prevention Course Available
  • Boot Camp Stye
  • Taught only by Industry Experts
FIND OUT PRICING
ON-SITES OFFERED
"Great instructor - thoroughly covered all topics with expertise. He focused our attention to the pertinent information. ... a great experience"

Jeremy J. Pearson,
Joint Staff, Pentagon

Some of the topocs covered in this class:

  • Understanding the methodology of an effective Incident Response process
  • Incident Response Phases
  • Create working documentation and checklists usable during a real-world response crisis
  • Understand the proper incident response process for live compromised Windows and Unix systems
  • Learn how to detect and confirm attacks against Windows and Unix systems
  • Create a system response toolkit to be used in the heat of a crisis
  • Learn how to discover attack signatures in Windows and Unix log files
  • Use Log Parser 2.2 to recover critical information from Windows systems
  • Understand what volatile evidence is present on a system you must collect and preserver prior to system power down
  • Get hands-on experience retrieving and writing to disk memory from suspicious processes
  • Detect and remove Win32 Rootkits, LKM Rootkits and Trojaned files
  • Discover hidden files and processes
  • Analyze and export data from critical system files in Windows including hiberfil.sys and pagefile.sys
  • Learn how to recover deleted or overwritten files from Kernel memory on Unix systems
  • Perform basic Reverse Engineering of unknown process and binaries, without having to know assembly language.


Dates & Locations




Unfortuantely, no public enrollment courses currently match your criteria

Your name can be added to a wait list for an upcomming course, or we can schedule to run an On-Site course in your local area if you have 6 students or more. Complete the following form if you would like to recieve information concerning our wait list policy and/or On-Site training

Full Name:
Company:
Work Phone #:
Email:
Any questions we can answer?
(optional)
 

The best in the world come train with us





See what our students are saying

  • Mario Rodrguez

    U.S. ARMY

    "you have set the standard"

    "You have set the standard for instruction. Innovative and teaches you how to think through a problem with sound logic."


    Find out more

  • James Hollyer

    "...well worth the money"

    "It was fantastic! I learned more then i could have ever dreamed! even if I dont pass the exam the knowledge i got was well worth the money I spent!! and i had a good time leanring as well!"


    Find out more

  • Virgil Sabas

    SAIC

    "nice to have a dedicated training laptop provided"

    "I got a lot out of the real world scenarios presented in class. Jeremy is very knowledgeable in the field of penetration testing. Would definitely take classes again if he is the instructor. The course books are a great reference, and it was nice to have a dedicated training laptop provided by Infosec and not have to bring my own and waste time installing programs during class"


    Find out more

  • Rummy Dabgotra

    MTS Allstream

    "invaluable to my career"

    "Dan is an excellent instructor and incredibly knowledgeable. Great presenter and very helpful. The course was very intense but well structured. The hours were long but it really allows you to get your head wrapped around it. Slide notes were very good as well as the lab pre-info. The labs tied well into the course. The content and knowledge gained will be invaluable to my career."


    Find out more

Pricing

Call (866)-471-0059 or fill out this short form for current pricing

YOU GET

  • 5 Days of Expert Instruction from an instructor with real-world incident response experience with deep knowledge of IR training strategies.
  • Guaranteed small class size (less than 10-16 Students), you get an intimate learning setting not offered at any of our competitors.
  • All meals, snacks and refreshments included.
  • Lecture, Lab Exercise and Text book
  • CD-ROM with every tool and custom script used in course.

GET YOUR QUOTE - INSTANTLY

Other Related Tools & Resources For Our Students

OUR STUDENTS SAY:
InfoSec Institute has an excellent instructor and this is the best IT security class I have ever taken. His knowledge and method of teaching are unsurpassed.