EC Council Certified Security Analyst (ECSA) augments the Certified Ethical Hacker(CEH) certification by delving into the diagnostic phase of ethical hacking. While we know, the Certified Ethical Hacker certification mainly exposes the learner to a wide range of hacking tools and technologies, the Certified Security Analyst course takes a deeper plunge by enabling the learner to closely explore and analyze the outcome from these tools and technologies.
The Computer Hacking Forensic Investigator (CHFI) course imparts the security discipline of computerized forensics from a vendor-neutral perspective. CHFI is an extensive course which covers major forensic investigation schemes and empowers the students to acquire the relevant hands-on experience with various forensic investigation tools and techniques. Additionally, it also conveys necessary information regarding the use of standard forensic tools for successfully carrying out computer forensic investigation which may lead to the prosecution of violators.
The CHFI certification also gives the participants (network administrators, law enforcement personnel, security professionals, legal professionals and officers, defense and military personnel, bankers, security officers, and anyone who is directly connected with the integrity of the network infrastructure) with the requisite skills to perform a detailed and compelling digital forensics investigation.
CHFI, therefore, presents a technological and specialized approach to computer forensics. This primarily includes searching and snagging, chain-of-custody, acquisition, recovery, preservation, thorough investigation and analysis, and finally reporting of digital evidence.
A: The CHFI program is specially designed for all IT professionals who are involved with computer forensics, information system security, and incident response.Target Audience
Defense and Military personnel
Banking, Insurance and other professionals
e-Business Security professionals
Police and other law enforcement personnel
A: Students undergoing CHFI training will learn the following:
Set up threat intelligence and major learning points with a view to supporting proactive profiling and scenario modeling.
Conduct anti-forensic detection procedures.
Perform post-intrusion analysis of electronic and digital media to discover the what, where, who, how, and when the intrusion occurred.
Extract information and analysis of logs from various devices like firewall, proxy, IDS, IPS, Desktop, servers, laptop, SIM tool, router, switches AD server, Access Control Logs, DHCP logs, and wrap up as part of the investigation process.
Detect and check the possible source/outcome/ incident origin.
Retrieve deleted files and partitions in Mac OS X, Windows, and Linux.
Perform reverse engineering for suspected and known malware programs and files.
Compile data using forensic technology techniques and methods in accordance with the evidence and testimony handling procedures, including the collection of a hard copy and electronic media documents.
A: iLearn is EC Council’s online, self-paced option. This implies all the modules which are taught in the live course are recorded, registered and presented in a streaming video format. It gives an option to the candidate to set up his own learning speed by taking occasional pauses in between the lectures and return to the study plan as per the schedule.
Exam Name: CHFI EC0 312-49
Test Duration: 4 Hours
Number of Questions: 150
Test Format: Multiple Choice
Test Delivery: ECC Exam Portal