Professional Certificate of Digital Forensic Analysis of RAM Memory
Students
Course category
Completed
75,00€
Course Description
With a duration of 50 hours, you will enjoy the most practical course of Digital Forensic Analysis (DFA) of RAM memory of Windows and Linux systems in the market. You will be able to do it from the comfort of your home, organizing yourself as you wish and studying at your own pace. You have a total of 12 months to finish it. The course is in Spanish.
The course covers the following types of forensic analysis:
- RAM memory of Windows systems: In this type the analysis of RAM memory is performed through a RAM memory dump.
- RAM memory of Linux systems: In this type, RAM memory analysis is performed by means of a RAM memory dump.
- Malware files: In this type, the analysis of malware found embedded in the analyzed RAM memory is carried out.
- Network traffic: In this type the analysis of incoming and outgoing network traffic is performed, looking for possible cyber-attacks (malware download, phishing, exfiltration of sensitive information, etc.).
In order to obtain the Professional Training Certificate of the course issued by “Jaymon Security”, the student must take a 20-question final exam, obtaining a pass with a percentage of correct answers equal to or higher than 75% of the exam questions, and with a time limit of 60 minutes for the completion of the exam. In addition, a practical exam of an analysis of an image of a RAM memory provided in the course must be taken, and must be passed with a minimum grade of 75%. The corresponding certificate will be provided through a badge validation platform, simplifying its presentation to various interested entities.
Course aims
- This course provides the student with the necessary conceptual and practical knowledge to be able to carry out a professional Digital Forensic Analysis of Windows and Linux system RAM, malware files and network connections.
- The student will obtain the necessary knowledge to develop his own methodology and to be able to carry out his own analysis with the corresponding executive and technical reports, which can be presented in court with all the legal guarantees.
1. Introduction to forensic analysis.
- Concept of forensic analysis.
- History.
- Some real cases.
2. Legal foundations of forensic analysis.
- Introduction.
- Expert’s action.
- Expert opinion.
- Expert and trial.
3. Forensic procedures for the acquisition of evidence.
- Chain of custody.
- Anticipated evidence.
- Preservation of evidence.
- Identification and collection of evidence.
- Cloning and integrity.
4. Market solutions and NIST guidance.
- Market study on different solutions.
- Exercise of use and use of NIST guide in forensic procedures and incidents.
5. Practical test of a forensic analysis of the RAM memory of a Linux system.
- Technical report in practical exercise format containing:
- Tools to carry out the analysis.
- Scenario preparation.
- Execution of the exercise and analysis of the results.
6. Practical test of a forensic analysis of the RAM memory of a Windows system.
- Technical report in practical exercise format containing:
- Tools to carry out the analysis.
- Scenario preparation.
- Execution of the exercise and analysis of the results.
7. Final exam and case study – JMSec Certificate of Completion
- Final theoretical exam.
- Ethical hacking case study.
Methodology
- The course is carried out using the following elements:
- For each lesson the student will be provided documents in PDF format.
- The student will have to perform workshops and practical laboratories.
- In order to demonstrate the student’s progress in the course, the student will take a final test, as well as a practical test that will be evaluated by a tutor.
This course is also designed to be able to be taken offline using the different downloadable resources provided.
