Course

Extended Digital Forensics and Incident Response - COMP6845

Faculty: Faculty of Engineering

School: School of Computer Science and Engineering

Course Outline: School

Campus: Sydney

Career: Undergraduate

Units of Credit: 6

EFTSL: 0.12500 (more info)

Indicative Contact Hours per Week: 6

Enrolment Requirements:

Prerequisite: COMP3441 or COMP6441 or COMP6841, and COMP3231 or COMP3891

Excluded: COMP6445

CSS Contribution Charge: 2 (more info)

Tuition Fee: See Tuition Fee Schedule

Further Information: See Class Timetable

View course information for previous years.

Description

This course addresses the skills and knowledge needed by first responders to a discovered cyber breech, as well as law enforcement and criminal justice.

This course covers both forensic theory / professional practice, and looking at the underlying engineering of hiding, finding, interpreting and responding to traces. Students will use of standard forensic tools to extract carve and analyse data as well as learning the low level technical skills and knowledge underlying them. By the end of the course students should be able to write and analyse simple forensic tools as well as being able to use them.

The course covers Memory Forensics, Disc Forensics Network, Device Forensics, Stealth Techniques, Anti-forensics, Professional Forensic Practice, (chain of custody, records etc), Logging. Course coverage will be constantly updated over time to reflect emerging forensic practice and methods.

This is the extended version of COMP6445. This course includes the material of COMP6445 plus malware analysis and incident response.
Standard-Portrait-2.jpg

Study Levels

UNSW Quick Links