FOR500 is a specialized course designed to equip digital forensics professionals with the skills needed to investigate and analyze Windows-based systems. The course focuses on extracting and analyzing digital evidence from Windows operating systems, including artifacts related to user activity, system events, malware infections, and cyber attacks.
Syllabus
- Digital Forensics and Advanced Data Triage
- Registry Analysis, Application Execution, and Cloud Storage Forensics
- Shell Items and Removable Device Profiling
- Email Analysis, Windows Search, SRUM, and Event Logs
- Web Browser Forensics
- Windows Forensics Challenge
