Extended Digital Forensics and Incident Response - COMP6845
Faculty: Faculty of Engineering
School: School of Computer Science and Engineering
Course Outline: School
Campus: Sydney
Career: Undergraduate
Units of Credit: 6
EFTSL: 0.12500 (more info)
Indicative Contact Hours per Week: 6
Enrolment Requirements:
Prerequisite: COMP3441 or COMP6441 or COMP6841, and COMP3231 or COMP3891
Excluded: COMP6445
CSS Contribution Charge: 2 (more info)
Tuition Fee: See Tuition Fee Schedule
Further Information: See Class Timetable
View course information for previous years.
Description
This course covers both forensic theory / professional practice, and looking at the underlying engineering of hiding, finding, interpreting and responding to traces. Students will use of standard forensic tools to extract carve and analyse data as well as learning the low level technical skills and knowledge underlying them. By the end of the course students should be able to write and analyse simple forensic tools as well as being able to use them.
The course covers Memory Forensics, Disc Forensics Network, Device Forensics, Stealth Techniques, Anti-forensics, Professional Forensic Practice, (chain of custody, records etc), Logging. Course coverage will be constantly updated over time to reflect emerging forensic practice and methods.
This is the extended version of COMP6445. This course includes the material of COMP6445 plus malware analysis and incident response.