Incident Response and Network Forensics Training Boot Camp

InfoSec Institute’s award-winning Incident Response training course teaches students how to effectively detect, contain and mitigate security incidents.

Award-Winning Training

For 20 years InfoSec has been one of the most awarded and trusted information security training vendors — 40+ industry awards!

Exam Pass Guarantee

We offer peace of mind with our Exam Pass Guarantee for Flex Pro students.

Track Record of Success

InfoSec Institute training courses have received 10,000+ 5-star reviews from our students!

Incident Response Course Overview

InfoSec Institute offers this hands-on Incident Response and Network Forensics course that covers the essential information you need to know in order to properly detect, contain and mitigate security incidents. Security incidents are a way of life in the modern world, and how organizations respond to them makes a massive difference in how much damage is ultimately done. In this five-day course, you learn the ins and outs of incident response, as well as the tools of the trade used by incident responders on a daily basis.

This course from InfoSec Institute helps you fully understand how systems are compromised and what traces are left behind by attackers on the network, on disk and in volatile memory. The Incident Response and Network Forensics course addresses cutting edge attack vectors as well as tried and true methods for compromise. You leave the five-day course with the knowledge of how to prevent incidents and the skills to defend against a security incident if it does happen.

Award-Winning Training

The Most Flexible Training — Guaranteed

Exam Pass Guarantee — If you don’t pass your exam on the first attempt, get a second attempt for free; includes the ability to re-sit the course for free for up to one year

100% Satisfaction Guarantee — If you’re not 100% satisfied with your training at the end of the first day, you may enroll in a different Flex Pro or Flex Classroom course

Knowledge Transfer Guarantee — If an employee leaves within three months of obtaining certification, InfoSec Institute will train a different employee at the same organization tuition-free for up to one year

Course Objectives

The course focuses on the five key Incident Response tactics:

  1. Plan – Preparing the right process, people and technology enables organizations to effectively respond to security incidents
  2. Identify – Scoping the extent of the incident and determining which networks and systems have been compromised; includes assessing the extent to which systems have been compromised
  3. Contain – Prevent the incident from further escalation using information gathered in Identify stage
  4. Eradicate – Remove intruder access to internal and external company resources
  5. Recover – Restore fully operational system capability and close out incident

What You'll LEARN

  • The Incident Response Process
  • Event/Incident Detection
  • Sources of Network Evidence
  • TCP Reconstruction
  • Flow Analysis
  • NIDS/NIPS
  • Log Analysis
  • Firewall log Investigation
  • Log Aggregation
  • Network Artifact Discovery
  • DNS Forensics and Artifacts
  • NTP Forensics and Artifacts
  • HTTP Forensics and Artifacts
  • HTTPS and SSL Analysis
  • FTP and SSH Forensics
  • Email Protocol Artifacts
  • Wireless Network Forensics

What You'll DO

  • Constructing your Live Incident Response Toolkit

  • Perform Vulnerability Analysis

  • The Incident Management Knowledgebase

  • Timeline Analysis

  • Triage & Analysis

  • Volatile Data Sources and Collection

  • Identify Rogue Processes

  • Volatility Walkthrough

  • Defensive review and recommendations

  • Improving defenses

  • Secure credential changing process and monitoring

  • Increased monitoring period – when and how long

  • Validate the system.

  • Enable constituents to protect their assets and/or detect similar incidents.

  • Report and coordinate incidents with appropriate external organizations

  • CSIH Domains

  • CSIH Practice Exam

InfoSec Flex Center: Your Personalized Learning Experience

Learn More

Why Choose InfoSec Institute?

Industry-Leading Exam Pass Rates — 93% of our students pass their certification exams on their first attempt

Training to Fit Your Schedule — In addition to Flex Pro, the highest-quality live online training in the industry, InfoSec Institute offers Flex Classroom training around the country and learn-at-your-own pace Flex Basic courses

Experienced Instructors — InfoSec Institute instructors have at least 10 years of industry training experience and are professionals with active roles in the industry

Most Thorough Exam Prep Services Available — Students get free exam readiness testing through SkillSet.com as well as advanced access to all course materials

What's Included

  • Five days of intense training with an expert instructor
  • Pre-shipment of pre-study book
  • Incident Response digital textbook (physical textbooks available to purchase)
  • Incident Response toolkit
  • InfoSec Institute digital IR and Network Forensics lab guide
  • CERT CSIH digital review guide
  • Detailed reporting on exam readiness via your Flex Center (Flex Pro)
  • CERT CSIH exam voucher
  • 6 months access to virtual lab environment (Flex Pro)
  • 100% Satisfaction Guarantee
  • Exam Pass Guarantee (Flex Pro)
  • Add-on: Video replays of daily lessons
  • Add-on: Curated videos from other top-rated instructors

What Our Students Are Saying

It was obvious that the instructor is proficient in the material. He is very friendly and accomodating. It was a pleasure to meet him and learn from him, I look forward to the opportunity to take another class from him. I enjoyed the labs and overall they were very good and informative. We were always able to ask for instructor help. I would have liked to seems demo on the reverse engineering of the Trojan but even at that it was still a good lab.
DW

Don West EICU

Incident Response and Network Forensics Training Boot Camp

Our Major Clients

View Pricing

We will never share any of your information, spam you or annoy you with pushy sales pitches.

Book your course

    Career Tracks

    • Networking Administration

    • Security Pro Track

      The Security Pro Track goes through all aspects of Information Security. Our goals with this set of courses is to create the most complete Security Specialist an organization could wish for.
    Ready to get started? Get instant pricing for this award-winning boot camp. View course pricing
    View instant course pricing