Incident Response: Evidence Collection in Windows Preview

Incident Response: Evidence Collection in Windows

With Jason Dion Liked by 276 users
Duration: 1h 46m Skill level: Advanced Released: 10/22/2019

Start my 1-month free trial

Course details

If your organization is the victim of a cyberattack, will you be ready to respond? An incident responder or digital forensics technician has to be prepared to properly collect digital evidence as soon as an event is reported. This course teaches you how to quickly triage affected systems, securely collect digital evidence, and create your collection report for further forensic analysis. Digital forensic examiner (DFE) Jason Dion explains how to build a portable toolkit of trusted tools, both proprietary and open source, to collect evidence from Windows machines: volatile data from workstations, non-volatile data from hard drives and USBs, and disk images. Jason also shows how to deal with encryption challenges, document your collection efforts, and build a finalized collection report.

Skills you’ll gain

Meet the instructor

Learner reviews

4.7 out of 5

107 ratings
  • 5 star
    Current value: 89 83%
  • 4 star
    Current value: 11 10%
  • 3 star
    Current value: 5 4%
  • 2 star
    Current value: 0 0%
  • 1 star
    Current value: 2 1%

Contents

What’s included

  • Practice while you learn 1 exercise file
  • Test your knowledge 7 quizzes
  • Learn on the go Access on tablet and phone

Download courses

Use your iOS or Android LinkedIn Learning app, and watch courses on your mobile device without an internet connection.