SYLLABUS FOR CERTIFICATION COURSE IN CYBER FORENSICS (5 Days offline)
Day 1: Introduction to Cyber / Digital Forensics
Module 1: Fundamentals of Computer
a. Hardware, Software
b. Introduction to Networking & IP Address
c. Other Web-related concepts
Module 2: Other Relevant Technical Concepts
a. Types of Computer OS
b. Introduction to Windows Registry
c. Types of File Systems
Day 2: Cyber Forensics Investigation
Module 3: Overview of Cyber / Digital Forensics
a. What is Cyber/Digital Forensics?
b. Importance of Forensics in Investigations
c. Types of Digital Evidences
d. Sources of Digital Evidence
Module 4: Memory and Malware Forensics
a. Memory Dump Acquisition and Analysis
b. Detecting and Analysing Malware
c. Introduction to Reverse Engineering (Malware Behaviour Analysis)
Lab :Setting up Forensic Workstation
a. Introduction to Forensics Toolkit Bag.
b. Installing forensic tools (Autopsy, FTK Imager)
c. Familiarization with forensic environments (Virtual Machines)
d. Common Forensic Tools (EnCase, FTK, Autopsy, etc.)
Day 3: Cyber Forensics Investigation
Module 5: Seizure of Electronic Devices / Evidence
a. Seizure of Electronic Devices containing evidence
b. Preparing Search and Seizure Note / Panchanama
c. Documentation & FSL Questionnaire
Module 6: Email Tracking & Tracking
a. Email Header
b. Email Header Analysis
c. Utilities for Email Tracing and Tracking
Module 6: Seizure of Electronic Devices / Evidence
a. Seizure of Mobile Device.
b. Practical Voice Sampling with Panchanama.
c. Practical - Audio-video recording of search and seizure as per BNSS 2023 with Panchnama.
d. Practical -Hash Value, Forensic Cloning / Imaging
Day 4: Mobile Forensics Investigation
Module 7: Mobile Architecture
a. Mobile Operating Systems: Android. iOS, etc.
b. Mobile Device Components and Data Types (SIM, SD Cards, etc.)
c. Key Artifacts in Mobile Devices (Call Logs, Messages, App Data)
Module 8: Mobile Forensic Tools and Techniques
a. Popular Mobile Forensic Tools
b. Data Extraction Methods (Logical, Physical, File SystemExtraction)
c. Cloud and App-Based Evidence Retrieval
Lab: Practical Mobile Device Acquisition
a. Seizure of Mobile Device.
b. Data Extraction Methods (Logical, Physical, File System Extraction)
Day 5: Case Studies, Reporting, and Mock Investigations
Module 9: Legal Framework and Reporting
a. Preparing and Presenting Forensic Reports
b. Testifying in Court: Legal Terminology and Best Practices
c. Challenges in Cyber and Mobile Forensics Investigations
Module 10: Mock Investigations and Case Studies
a. Case Study 1: Investigating a Mobile Device in a Criminal Case
b. Case Study 2: Performing a Full Cyber Forensic Investigation
Assessment:
A practical test at the end of the course to assess skills in evidence
collection, analysis, and reporting.
Certification:
Certification issued upon successful completion of practicals and
assessments.