From the course: CompTIA Security+ (SY0-601) Cert Prep: 9 Operations and Incident Response
Unlock the full course today
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Network forensics
From the course: CompTIA Security+ (SY0-601) Cert Prep: 9 Operations and Incident Response
Network forensics
- [Instructor] Forensic investigators are also often interested in the communication sent and received by targeted systems. The investigators might not have access to the system itself, or they might simply want to get a complete profile of a suspect's communications. That's where network forensics come into play. Network transmissions are digital, consisting of ones and zeros sent across some form of network media. Ethernet networks send electrical impulses over copper wire, while fiber-optic networks use pulses of light transmitted over strands of glass. Wireless networks use radio waves to send their digital bits through the air. Now, whatever media is used, anyone with access to that media can capture those bits as they travel. Copper and fiber-optic cables may be tapped. Wireless radio signals may be intercepted. Switches and routers can be compromised. An attacker might use any of these techniques to…
Contents
-
-
-
-
-
-
Conducting investigations3m 50s
-
Evidence types3m 28s
-
Introduction to forensics3m 21s
-
System and file forensics4m 26s
-
File carving3m 46s
-
Creating forensic images5m 30s
-
Digital forensics toolkit2m 25s
-
Operating system analysis6m 9s
-
Password forensics7m 16s
-
Network forensics4m 1s
-
Software forensics4m 25s
-
Mobile device forensics1m 10s
-
Embedded device forensics2m 30s
-
Chain of custody1m 50s
-
Ediscovery and evidence production3m 3s
-
Exploitation frameworks6m 4s
-
-