Description
Course info
Rating
(34)
Level
Intermediate
Updated
Jul 7, 2017
Duration
1h 10m
Description

Do you like the idea of being able to find what others cannot? In this course, Digital Forensics: Getting Started with File Systems, you'll dive into learning about digital forensics, file systems, and how digital forensic investigators use them to prove what did or did not happen on a system. You'll begin by covering topics, such as tracks, sectors, clusters, blocks, and slack space. Next, you'll explore deeper into permissions and metadata. Finally, you'll take a look into time stamps, and journaling all while making use of Autopsy as your tool. By the end this course, you’ll know how to navigate Autopsy and the native Windows, Linux, and Mac OS X operating systems to find file system level forensic evidence.

About the author
About the author

Evan is an engineer by nature and a security professional by trade with over a decade of experience in technology and security. He enjoys learning new technologies and how to get more out of existing technologies through integration, enrichment, and innovation of new use cases.

More from the author
CISSP® - Communications and Network Security
Intermediate
1h 38m
Apr 22, 2016
CISSP® - Security Engineering
Intermediate
2h 29m
Jan 27, 2016