IT6853 – Computer Forensics

IT6853 – Computer Forensics

Note: These resources were developed with the support from Affordable Learning Georgia (ALG)- Round 18, Grant#549, 2021.

Introduction

IT6853 – Syllabus – HERE

Modules

Module 1 – Introduction to Computer Forensics

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading Material
  5. Additional Reading 1
  6. Lab A

Module 2 – Windows File System and Artifacts

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. NTFS Manual
  7. Lab B

Module 3 – Linux File System and Artifacts

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – video Inode
  7. Resources – Example of Linux Forensics
  8. Lab C

Module 4 – Introduction to Partitions

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – MBR
  7. Resources – MBR_GPT_cheatsheet
  8. Resources – Paper #1
  9. Resources – Paper #2
  10. Quiz 1

Module 5 – Data Acquisition

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – Procedure_for_Data_Acquisition
  7. Resources – Paper #1
  8. Resources – Paper #2
  9. Lab D

Module 6 – Windows Registry

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Resources – Windows_Registry_Documentation
  6. Resources – Paper #1
  7. Quiz 2

Module 7 – Web Browser Forensics

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – Paper #1
  7. Resources – Paper #2
  8. Midterm

Module 8 – Network Forensics

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Resources – Paper #1
  6. Resources – Video_example
  7. Resources – Network_Basis
  8. Lab E

Module 9 – Automating Forensic Analysis and Reporting

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – Forensic_Tools
  7. Resources – Forensic_Tools2
  8. Lab F

Module 10 – Data/File Carving and Steganography

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1 – File Carving
  5. Reading #2 – Steganography
  6. Resources – Paper #1
  7. Resources – Paper #2
  8. Lab G

Module 11 – Email Forensics

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – Paper #1
  7. Resources – Gmail_Data_For_Forensics
  8. Resources – PST_Files
  9. Resources – Email_Attachment_TimeStamps
  10. Quiz 3

Module 12 – Mobile Forensics

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Reading #2
  6. Resources – Paper #1
  7. Resources – Paper #2
  8. Resources – Challenges_Mobile_Forensics
  9. Lab H

Module 13 – Recovering Passwords

  1. Study Guide
  2. Slides
  3. Lecture
  4. Resources – Password_Recovery
  5. Resources – Paper #1
  6. Lab I (Section A)

Module 14 – Log Analysis

  1. Study Guide
  2. Slides
  3. Lecture
  4. Lab I (Section B)

Module 15 – Cloud Forensics

  1. Study Guide
  2. Slides
  3. Lecture
  4. Reading #1
  5. Resources – Paper #1
  6. Resources – Paper #2
  7. Final Exam