Introduction to Digital Forensics
Join us for the Women's Society of Cyberjutsu (WSC) Cybersecurity Workshop hosted from our Washington, DC location. This is a hands-on, practical workshop where you will put into practice those things you may have read or covered in a class. This is also a great way to keep your skills fresh if you're a veteran.
Every workshop addresses beginner and advanced topic material. Beginners are encouraged to watch and learn as much as possible even though you may not have a clue. Exposure to new tools and techniques by watching will advance your learning process a lot quicker than trying to learn on your own. You will get to ask questions and see how it's done in the real world. Advanced attendees are encouraged to share and help answer "noob" questions as much as possible so everyone can learn from them.
Digital forensics is one of the many fields under the cybersecurity umbrella that is exploding in demand as the numbers of qualified examiners available for hire fail to meet employers' needs. A quick search of indeed.com or usajobs.gov reveals hundreds of open positions for professionals who can understand computers at the file system level and retrieve vital evidence to retell a story, whether it be "What did the user do on this system?" or "What did the attacker steal and how?". This workshop will introduce the foundational knowledge of key Windows artifacts that digital forensic analyst needs to investigate computer incidents successfully. Through "hands on" instruction, attendees will walk through several internal investigations and intrusion case studies and collect and analyze data from computer systems to track user/attacker based activity.
Alissa Torres is a certified SANS instructor, specializing in advanced computer forensics and incident response. Her industry experience includes serving in the trenches as part of the Mandiant Computer Incident Response Team (MCIRT) as an incident handler and working on a internal security team as a digital forensic investigator. She has extensive experience in information security, spanning government, academic and corporate environments and holds a Bachelors degree from University of Virginia and a Masters from University of Maryland in Information Technology. Alissa has taught as an instructor at the Defense Cyber Investigations Training Academy (DCITA), delivering incident response and network basics to security professionals entering the forensics community. She has presented at various industry conferences and numerous B-Sides events. In addition to being a GIAC Certified Forensic Analyst (GCFA), she holds the GCFE, GPEN, CISSP, EnCE, CFCE, MCT and CTT+.
You must bring your own laptop.
Must be installed with Vmware Player or Workstation. Mac users install Vmware Fusion (trial version is fine).
Download the SIFT Workstation virtual appliance from the SANS website.
Image files will be distributed at the class and also available for download. Once registered you'll receive the link.
Knowledge of basic networking and IT.
Good attitude, willingness to learn and share.
Once registered, you'll receive the meeting participation info by email the day before the workshop. Please have a working webcam/mic. Expect to join 15-30 minutes prior to test your technical configurations. In order for you to follow along better, we suggest you have a 2nd monitor to view the presenters screen, aside from the machine you'll be using for the workshop.
Onsite - $20, Remote - $5
We only have room for 24 onsite so register early.
Refunds are offered if:
The workshop is cancelled
You cancel at least 1 day before the workshop; by 1200 pm Friday (9/6)
Use front door. POC:[masked]
Earn CPE's towards your certification
Food & beverages are provided