Course detail
Digital Forensics (in English)
FIT-DFAaAcad. year: 2021/2022
The course focuses on the role of computer forensics and the methods used in the investigation of computer crimes. The course explains the need for proper investigation and illustrates the process of locating, handling, and processing computer evidence. A detailed explanation of how to efficiently manage a forensics investigation and how to preserve and present evidence is covered.
Language of instruction
Number of ECTS credits
Mode of study
Guarantor
Department
Offered to foreign students
Learning outcomes of the course unit
Student acquaints basic concepts and principles of computer forensics and skills in a computer forensic examination.
Prerequisites
Basic knowledge of operating systems, storage media, networks, and the ability to create simple programs.
Co-requisites
Planned learning activities and teaching methods
The course consists of lectures and related practical exercises. Practical exercises begin with a brief presentation of the problem. Then students have time to solve a problem in class. For each lab, students are expected to write a report and submit it. Writing and sending a report is a subsequent homework of each laboratory. The deadline for submitting the report is one week.
Assesment methods and criteria linked to learning outcomes
Evaluation of hands-on labs during the course. Final Exam at the end of the course.
Course curriculum
Work placements
Aims
The aim is to understand principles of computer forensics and the basic concepts used in a computer forensics examination; introduces techniques required for conducting a forensic analysis of systems and data.
Specification of controlled education, way of implementation and compensation for absences
Controlled activities include the project, hands-on labs, and the final exam. Missed labs can only be replaced if there is a serious obstacle in the study.
Recommended optional programme components
Prerequisites and corequisites
Basic literature
Gerard Johansen: Digital Forensics and Incident Response: Incident response techniques and procedures to respond to modern cyber threats, Packt Publishing; 2nd edition, 2020 (EN)
Recommended reading
Nipun Jaswal: Hands-On Network Forensics: Investigate network attacks and find evidence using common network forensic tools, Packt Publishing, 2019. (EN)
Classification of course in study plans
- Programme IT-MSC-2 Master's
branch MBI , 0 year of study, summer semester, elective
branch MBS , 0 year of study, summer semester, elective
branch MGM , 0 year of study, summer semester, elective
branch MIN , 0 year of study, summer semester, elective
branch MIS , 0 year of study, summer semester, elective
branch MMM , 0 year of study, summer semester, elective
branch MPV , 0 year of study, summer semester, elective
branch MSK , 0 year of study, summer semester, elective - Programme MITAI Master's
specialization NADE , 0 year of study, summer semester, elective
specialization NBIO , 0 year of study, summer semester, elective
specialization NCPS , 0 year of study, summer semester, elective
specialization NEMB , 0 year of study, summer semester, elective
specialization NGRI , 0 year of study, summer semester, elective
specialization NHPC , 0 year of study, summer semester, elective
specialization NIDE , 0 year of study, summer semester, elective
specialization NISD , 0 year of study, summer semester, elective
specialization NMAL , 0 year of study, summer semester, elective
specialization NMAT , 0 year of study, summer semester, elective
specialization NNET , 0 year of study, summer semester, elective
specialization NSEC , 0 year of study, summer semester, elective
specialization NSEN , 0 year of study, summer semester, elective
specialization NSPE , 0 year of study, summer semester, elective
specialization NVER , 0 year of study, summer semester, elective
specialization NVIZ , 0 year of study, summer semester, elective - Programme IT-MGR-1H Master's
branch MGH , 0 year of study, summer semester, recommended course
- Programme IT-MSC-2 Master's
branch MGMe , 0 year of study, summer semester, compulsory-optional
- Programme MITAI Master's
specialization NISY up to 2020/21 , 0 year of study, summer semester, elective
specialization NISY , 0 year of study, summer semester, elective
Type of course unit
Lecture
Teacher / Lecturer
Syllabus
- Introduction to Forensic Investigation
- Forensic Data Acquisition
- Hands-on Lab: Forensic Data Acquisition and Analysis
- Computer Forensic Examination
- Hands-on lab: Web Browser Analysis
- Network Forensics
- Hands-on Lab: Network Forensics using Wireshark
- Traffic Tunneling, VPNs, and Covert Channels
- Hands-on Lab: Covert Channels Analysis
- Malware Forensics
- Hands-on Lab: Malware Forensics
- Password Recovery
- Hands-on Lab: Password Recovery
Laboratory exercise
Teacher / Lecturer
Syllabus
- Forensic Data Acquisition and Analysis
- Web Browser Analysis
- Network Forensics using Wireshark
- Covert Channels Analysis
- Malware Forensics
- Password Recovery
Project
Teacher / Lecturer
Syllabus
Performing the investigation of the selected cases. Solving the cases and writing the report.