From the course: CompTIA CySA+ (CS0-002) Cert Prep: 6 Incident Response
Unlock the full course today
Join today to access over 22,400 courses taught by industry experts or purchase this course individually.
Network forensics
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 6 Incident Response
Network forensics
- [Instructor] Forensic investigators are also often interested in the communications sent and received by targeted systems over a network. They may not have access to the system itself or may simply want to get a complete picture of a suspect's communications. That's where network forensics come into play. Network transmissions are digital, consisting of ones and zeros sent across some form of network media. Ethernet networks send electrical impulses over copper wire. Fiber-optic networks use pulses of light transmitted over strands of glass. And wireless networks use radio waves to send digital bits through the air. Whatever media is used, anyone with access to that media can capture those pulses as they travel. Copper and fiber-optic cables may be tapped. Wireless radio signals may be intercepted. Switches and routers can be compromised. An attacker might use these techniques to surreptitiously eavesdrop on network…
Contents
-
-
-
-
-
-
Conducting investigations5m 7s
-
Evidence types3m 51s
-
Introduction to forensics4m 6s
-
System and file forensics4m 17s
-
File carving3m 1s
-
Creating forensic images5m 36s
-
Digital forensics toolkit3m 13s
-
Operating system analysis6m 25s
-
Password forensics8m 9s
-
Network forensics4m 50s
-
Software forensics3m 32s
-
Mobile device forensics1m 32s
-
Embedded device forensics2m 50s
-
Chain of custody2m 13s
-
Ediscovery and evidence production3m 15s
-
-