Digital Evidence Investigator Training

Date:TBA

Price:

Location: Online

More Info

Available Online

This course is also available online with self-paced learning via our learning management system. Start today to earn your DEI Certified User Certificate today. The online self paced learning can be completed in about 16 hours.

Course Outline

Introductions & Getting Started

  • Digital Forensic Evidence and Triage Basics
  • Overview of How to Use Digital Evidence Investigator® (also knows as DEI)
    • DEI Terminology – Artifact Captures
    • DEI Terminology – File Captures
    • DEI Search Profiles – Quick, Intermediate and Comprehensive
    • Digital Evidence Investigator Workflow

Setup & Installation

  • Digital Evidence Investigator Software Installation and the Windows Assessment and Deployment Kit (WADK)

Booting & Bios 

  • Accessing BIOS/UEFI Setup
  • Accessing Boot Menu
  • UEFI and Fastboot Issues
  • Booting Apple Macintosh computers

Capture: Conducting a Scan

  • Case Study: Scanning attached media
  • Case Study: Scanning drive images
  • Case Study: Carrying out a boot scan
  • Case Study: Carrying out a live scan

Analysis: Navigating DEI 

  • Navigating Capture Results
  • Understanding Picture, Video, Keyword, Files and Timeline Views
  • Column Settings
  • Filtering Captures and Picture, Video, Keyword, Files and Timeline views
  • Tagging
  • Commenting

Reporting 

  • Case Study: Creating appropriate reports
  • Reporting – HTML
  • Reporting – CSV
  • Reporting – Stand-alone viewer

Customizing with Keywords and Hash Values

  • Case Study: Creating hash captures and leveraging targeted folders
  • Case Study: Creating keyword and regular expression searches
  • Case Study: Creating appropriate search profiles
  • Case Study: Importing keyword and hash lists
  • Case Study: Identifying good and bad keywords

Imaging

  • Device Imaging

Advanced Issues

  • Implications of thorough file identification and searching within containers
  • File type creation and implications
  • Searching browser cache issues
  • Case Study: Knowledge check

Get in touch with us today to discuss your training needs, learn more, or set up a private training for your investigators or examiners.

Related Posts

Explore BlackLight in a Virtual Hands-on Forensic APAC Workshop

September 17, 2020

PC-3000 Portable III Systems

September 15, 2020

PC-3000 SSD software add-on

September 14, 2020

Upcoming Trainings/Events

Explore BlackLight in a Virtual Hands-on Forensic APAC Workshop

Oxygen Forensic Boot Camp (OFBC) Live Online Training (Remote) (20-22 October 2020)

Oxygen Forensic Boot Camp (OFBC) Live Online Training (Remote) (15-17 September)
digital

Digital Intelligence Produces Crucial Clues To Trace Cryptocurrencies
somany_logo

So Many Logs, So Little Time: Efficient Windows Event Log Analysis

/* Omit closing PHP tag at the end of PHP files to avoid "headers already sent" issues. */