Certified Cloud Forensics Expert
With ForensicsHQ’s Certified Cloud Forensics Expert course, take a revolutionary step into the world of digital investigation. This extensive programme is intended to give you the fundamental abilities and understanding required to successfully negotiate the complex field of cloud-based digital forensics. Explore the complexities of cloud computing platforms, comprehend the subtleties of data storage, and become an expert at using cutting-edge methods to unearth digital evidence.
Eligibility
Knowledge on Computer Forensics or CHFI Certified with basic knowledge of AWS, Azure
What Will You Learn
Take part in a dynamic learning environment covering a wide range of subjects, such as forensic tools, cloud service models, security protocols, storage structures, threat identification, virtual environment incident response, and legal and ethical issues. By the time the course ends, you'll have a solid understanding of the fundamentals of cloud forensics and the know-how to deal with the difficulties posed by contemporary digital environments.
Duration
40 hrs
Course Fees
$ 276
Course Objective
- To properly analyse digital footprints across various cloud environments, comprehend Infrastructures as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS)
- Acquire the ability to analyse and comprehend diverse security measures implemented by prominent cloud service providers
- Get practical experience with tools designed specifically for cloud forensics.
- Handle Cloud Storage Architectures
- Assure a proactive approach to security by identifying and reducing potential risks unique to cloud systems, such as insider threats, unauthorised access, and data breaches
Course Benefits
Learn to trace digital footprints across cloud platforms. This course opens doors to careers in cloud security management, ensuring companies can safely migrate and operate in the cloud, free from cyber threats.
course syllabus
ForensicsHQ Lab Overview and Architecture
- Understanding ForensicsHQ Lab components
- Logstash, Elasticsearch, and Kibana roles
Searching and Filtering in Kibana
- Exploring search processes in Kibana within ForensicsHQ Lab
- Utilizing filters for data refinement
Unified Audit Log in ForensicsHQ Lab
- Leveraging Unified Audit Log for email investigations in ForensicsHQ Lab
File Operations in SharePoint and OneDrive with ForensicsHQ Lab
- Analyzing file operations in SharePoint and OneDrive using ForensicsHQ Lab
Microsoft Graph API Exploration
- Understanding the power and usage of Graph API
Graph API Logs Analysis in ForensicsHQ Lab
- Investigating logs generated by Graph API in ForensicsHQ Lab
Addressing Blind Spots in Graph API Incidents
- Identifying and mitigating blind spots in Graph API logs
ForensicsHQ Lab Integration with Azure Logs
- Exploring Azure index and discovering users and machines within ForensicsHQ Lab
Azure Active Directory Password Spray in ForensicsHQ Lab
- Analyzing Azure AD logs for password spray attacks using ForensicsHQ Lab
Tracking Resource Creations in ForensicsHQ Lab
- Identifying virtual machine creations in Azure using ForensicsHQ Lab
Detecting Data Exfiltration with ForensicsHQ Lab
- Utilizing NSG flow logs and storage logs for tracking data exfiltration in ForensicsHQ Lab
Understanding IR in AWS
- Overview of AWS organization and IAM within ForensicsHQ Lab
Networking, VMs, and Storage in AWS
- Exploring EC2 types, EBS, and VPCs in AWS within ForensicsHQ Lab
Analyzing CloudTrail logs in ForensicsHQ Lab
- Investigating incidents using CloudTrail logs in ForensicsHQ Lab
Event-Driven Response Using Lambda and Step Functions
- Utilizing Lambda and Step Functions for incident response in ForensicsHQ Lab
Creating and Conducting Investigations in AWS Cloud
- Best practices for creating and conducting investigations in AWS using ForensicsHQ Lab
Kubernetes Forensics and IR with ForensicsHQ Lab
- Exploring Kubernetes logs in ForensicsHQ Lab for pod identification
Understanding Google Workspace
- Overview of Google Workspace services and editions within ForensicsHQ Lab
Google Workspace Evidence Analysis in ForensicsHQ Lab
- Analyzing admin logs and audit logs using ForensicsHQ Lab
Investigating Attacks against Google Workspace
- Applying ATT& CK framework to Google Workspace incidents within ForensicsHQ Lab
Collecting Workspace Logs in GCP via CLI
- Live walkthrough for accessing Google Cloud Platform logs in ForensicsHQ Lab
- Profiling, Analyzing, and Summarizing Login Sources using ForensicsHQ Lab
Using Command-Line Tools to Extract Logs from GCP in ForensicsHQ Lab
Analyzing GCP’s Agent Logs for Compromised Systems
Tracking GCP Storage Bucket Exfiltration using ForensicsHQ Lab
Exploring Networking Logs and Data in GCP for Forensics using ForensicsHQ Lab
Setting the stage for the multi-cloud intrusion challenge using ForensicsHQ Lab
tools
Practical experience using advanced digital forensic tools.