Digital Evidence Investigator Training

Date: Coming Soon

Price: $3000

Location: Online

Price

$3,000.00

We offer a 2-Day hands-on, instructor-led Digital Evidence Investigator training. Students will learn how to configure DEI, operate the digital forensic software, analyze and interpret the evidence and forensic results.

Available Online

This course is also available online with self-paced learning via our learning management system. Start today to earn your DEI Certified User Certificate today. The online self paced learning can be completed in about 16 hours.

Course Outline

Introductions & Getting Started

  • Digital Forensic Evidence and Triage Basics
  • Overview of How to Use Digital Evidence Investigator® (also knows as DEI)
    • DEI Terminology – Artifact Captures
    • DEI Terminology – File Captures
    • DEI Search Profiles – Quick, Intermediate and Comprehensive
    • Digital Evidence Investigator Workflow

Setup & Installation

  • Digital Evidence Investigator Software Installation and the Windows Assessment and Deployment Kit (WADK)

Booting & Bios 

  • Accessing BIOS/UEFI Setup
  • Accessing Boot Menu
  • UEFI and Fastboot Issues
  • Booting Apple Macintosh computers

Capture: Conducting a Scan

  • Case Study: Scanning attached media
  • Case Study: Scanning drive images
  • Case Study: Carrying out a boot scan
  • Case Study: Carrying out a live scan

Analysis: Navigating DEI 

  • Navigating Capture Results
  • Understanding Picture, Video, Keyword, Files and Timeline Views
  • Column Settings
  • Filtering Captures and Picture, Video, Keyword, Files and Timeline views
  • Tagging
  • Commenting

Reporting 

  • Case Study: Creating appropriate reports
  • Reporting – HTML
  • Reporting – CSV
  • Reporting – Stand-alone viewer

Customizing with Keywords and Hash Values

  • Case Study: Creating hash captures and leveraging targeted folders
  • Case Study: Creating keyword and regular expression searches
  • Case Study: Creating appropriate search profiles
  • Case Study: Importing keyword and hash lists
  • Case Study: Identifying good and bad keywords

Imaging

  • Device Imaging

Advanced Issues

  • Implications of thorough file identification and searching within containers
  • File type creation and implications
  • Searching browser cache issues
  • Case Study: Knowledge check

Get in touch with us today to discuss your training needs, learn more, or set up a private training for your investigators or examiners.

Related Posts

ZIF Adapter to SATA Adapter, with a Flex Cable

May 18, 2022

USB3.0 to SATA-3 Adapter – For Linux

May 18, 2022

USB3.0 to SATA Adapters – 4 Channel Kit include power – Linux

May 18, 2022

Upcoming Trainings/Events

Nuix Workstation® Forensic Practitioner Windows

Nuix Workstation® Forensic Practitioner Core & Foundations

Nuix Investigate® Administrator

Nuix Investigate® End User

AX301 MAGaK (Magnet AXIOM & GrayKey) Advanced iOS Examinations (15-18 November 2022) – Law Enforcement/Government Only