Digital Evidence Investigator Training

Course Information

    If the scheduled dates above don't suit or if there are no available dates currently listed, but you are interested in the class, kindly fill in your details below to be added to our Register of Interest.

     

    A member of our training team will contact you with alternative arrangements.

     

    Available Online

    This course is also available online with self-paced learning via our learning management system. Start today to earn your DEI Certified User Certificate today. The online self paced learning can be completed in about 16 hours.

    Course Outline

    Introductions & Getting Started

    • Digital Forensic Evidence and Triage Basics
    • Overview of How to Use Digital Evidence Investigator® (also knows as DEI)
      • DEI Terminology – Artifact Captures
      • DEI Terminology – File Captures
      • DEI Search Profiles – Quick, Intermediate and Comprehensive
      • Digital Evidence Investigator Workflow

    Setup & Installation

    • Digital Evidence Investigator Software Installation and the Windows Assessment and Deployment Kit (WADK)

    Booting & Bios 

    • Accessing BIOS/UEFI Setup
    • Accessing Boot Menu
    • UEFI and Fastboot Issues
    • Booting Apple Macintosh computers

    Capture: Conducting a Scan

    • Case Study: Scanning attached media
    • Case Study: Scanning drive images
    • Case Study: Carrying out a boot scan
    • Case Study: Carrying out a live scan

    Analysis: Navigating DEI 

    • Navigating Capture Results
    • Understanding Picture, Video, Keyword, Files and Timeline Views
    • Column Settings
    • Filtering Captures and Picture, Video, Keyword, Files and Timeline views
    • Tagging
    • Commenting

    Reporting 

    • Case Study: Creating appropriate reports
    • Reporting – HTML
    • Reporting – CSV
    • Reporting – Stand-alone viewer

    Customizing with Keywords and Hash Values

    • Case Study: Creating hash captures and leveraging targeted folders
    • Case Study: Creating keyword and regular expression searches
    • Case Study: Creating appropriate search profiles
    • Case Study: Importing keyword and hash lists
    • Case Study: Identifying good and bad keywords

    Imaging

    • Device Imaging

    Advanced Issues

    • Implications of thorough file identification and searching within containers
    • File type creation and implications
    • Searching browser cache issues
    • Case Study: Knowledge check

    Get in touch with us today to discuss your training needs, learn more, or set up a private training for your investigators or examiners.

    Related Posts

    SuperWiper Desktop 12 NVMe ports PCIE4.0 Multiple NVMe SSD Data Erase Unit

    April 8, 2024

    SuperWiper 8” T4 SAS/SATA and USB3.2 Portable Data Erase Unit – Erase 13 Storage Devices

    April 8, 2024

    SuperWiper 8″ 4 SAS/SATA and 8 USB3.2 Ports Portable Economic Eraser Unit – Erase 12 Storage Devices

    April 8, 2024