Professional Certificate of Digital Forensic Analysis in Windows


Digital forensic expert

Course category

Digital Forensics





Course Description

With a duration of 150 hours, you will enjoy the most practical Windows Digital Forensic Analysis (DFA) course on the market. You will be able to do it from the comfort of your home, organizing yourself as you wish and studying at your own pace. You have a total of 12 months to complete the course. The course is in Spanish.

The following types of forensic analysis are carried out in the course:

  • Of Windows systems: In this type the analysis of physical hard disks, virtualized images, RAM memory, running systems, etc. is performed.
  • Of Malware files: In this type the analysis of banking Trojans, ransomware, etc. is carried out. It is usually a continuation of a system analysis after verifying that through the security breach cybercriminals introduced malware to take control of computer equipment.
  • Network traffic: In this type, the analysis of incoming and outgoing network traffic is performed in search of possible cyber-attacks (malware download, phishing, exfiltration of sensitive information, etc.).

In order to obtain the Certificate of Professional Qualification of the course issued by “Jaymon Security”, the student must take a final test exam of 35 questions, obtaining a pass with a percentage of success equal to or greater than 80% of the exam questions, and with a time limit of 60 minutes for the completion of the exam. In addition, a practical exam of an analysis of an image of a hard disk must be taken, which must be passed with a minimum grade of 80%. The corresponding certificate will be provided through a badge validation platform, simplifying its presentation to various interested entities.

Course aims

  • This course provides the student with the necessary knowledge at a conceptual and practical level to be able to carry out a professional Digital Forensic Analysis of Windows systems, malware files and network connections.
  • The student will obtain the necessary knowledge to develop his own methodology and to be able to carry out his own analysis with the corresponding executive and technical reports, which can be presented in court with all the legal guarantees.

1. Introduction to forensic analysis.

  •  Concept of forensic analysis.
  • History.
  • Some real cases.

2. Legal foundations of forensic analysis.

  •  Introduction.
  • Expert’s action.
  • Expert opinion.
  • Expert and trial.

3. Forensic procedures for the acquisition of evidence.

  •  Chain of custody.
  • Anticipated evidence.
  • Preservation of evidence.
  • Identification and collection of evidence.
  • Cloning and integrity.

4. Practical test of a forensic analysis of a disk image of a Windows system (Trojan).

  • Technical report in practical exercise format containing:
    • Tools to carry out the analysis.
    • Preparation of the scenario.
    • Execution of the exercise and analysis of the results.
  • Executive report to present to the management of the contracting company.

5. Expert report of a forensic analysis of hard disks of a Windows system (Ransomware).

  • Actual expert report containing:
    • Legal safeguards.
    • Tools to carry out the analysis.
    • Scenario preparation.
    • Execution of the exercise and analysis of the results.

6. Final exam and case study – JMSec Certificate of Completion

  • Final theoretical exam.
  • Ethical hacking case study.

Course structure on the study platform


  • The course is carried out using the following elements:
    • For each lesson the student will be provided documents in PDF format.
    •  The student will have to perform workshops and practical laboratories using virtual machines.
    • In order to demonstrate the student’s progress in the course, the student will take a final test, as well as a practical test that will be evaluated by a tutor.


    This course is also designed to be able to be taken offline using the different downloadable resources provided.