According to Wikipedia
Computer forensics (sometimes known as computer forensic science[1]) is a branch of digital forensic science pertaining to legal evidence found in computers and digital storage media. The goal of computer forensics is to examine digital media in a forensically sound manner with the aim of identifying, preserving, recovering, analyzing and presenting facts and opinions about the information.
Although it is most often associated with the investigation of a wide variety of computer crime, computer forensics may also be used in civil proceedings. The discipline involves similar techniques and principles to data recovery, but with additional guidelines and practices designed to create a legal audit trail.
Evidence from computer forensics investigations is usually subjected to the same guidelines and practices of other digital evidence. It has been used in a number of high profile cases and is becoming widely accepted as reliable within US and European court systems.
One of my current students is a Computer Forensic Examiner, and responded recently to a question from another student in the class about the field and how to break into it.
His answer was so good I decided to include it here at a blog post---here it is
It's ever changing and always challenging. However, it's not cheap. A typical course ranges from $2,500 to $4000 dollars.
If you're truly interested in this then go to some of the big job sites like Monster.com and put in computer forensic examiner, which is my title, and see what comes up.
Many provide certifications they are looking for and the're typically from one of the few major companies and/or groups:
Guidance Software (EnCE - EnCase Certified Examiner)
http://www.guidancesoftware.com/
AccessData (ACE - Access Data Certified Examiner)
http://www.accessdata.com/
International Association of Computer Investigative Specialists (IACIS)
(CFCE - Computer Forensic Certified Examiner)
https://www.iacis.com/
International Society of Forensic Computer Examiners (ISFCS)
(CCE - Certified Computer Examiner)
http://www.isfce.com/
Sans (GFCA - Certified Forensic Analyst & GFCE - Certified Forensic Examiner) http://www.sans.org/
The list goes on and on.
Two books you might want to check out are
Guide to Computer Forensic Investigations
http://www.amazon.com/Guide-Computer-Forensics-Investigations-Nelson/dp/1435498836
and
File System Forensic Analysis
http://www.amazon.com/System-Forensic-Analysis-Brian-Carrier/dp/0321268172
Computer forensics (sometimes known as computer forensic science[1]) is a branch of digital forensic science pertaining to legal evidence found in computers and digital storage media. The goal of computer forensics is to examine digital media in a forensically sound manner with the aim of identifying, preserving, recovering, analyzing and presenting facts and opinions about the information.
Although it is most often associated with the investigation of a wide variety of computer crime, computer forensics may also be used in civil proceedings. The discipline involves similar techniques and principles to data recovery, but with additional guidelines and practices designed to create a legal audit trail.
Evidence from computer forensics investigations is usually subjected to the same guidelines and practices of other digital evidence. It has been used in a number of high profile cases and is becoming widely accepted as reliable within US and European court systems.
One of my current students is a Computer Forensic Examiner, and responded recently to a question from another student in the class about the field and how to break into it.
His answer was so good I decided to include it here at a blog post---here it is
It's ever changing and always challenging. However, it's not cheap. A typical course ranges from $2,500 to $4000 dollars.
If you're truly interested in this then go to some of the big job sites like Monster.com and put in computer forensic examiner, which is my title, and see what comes up.
Many provide certifications they are looking for and the're typically from one of the few major companies and/or groups:
Guidance Software (EnCE - EnCase Certified Examiner)
http://www.guidancesoftware.com/
AccessData (ACE - Access Data Certified Examiner)
http://www.accessdata.com/
International Association of Computer Investigative Specialists (IACIS)
(CFCE - Computer Forensic Certified Examiner)
https://www.iacis.com/
International Society of Forensic Computer Examiners (ISFCS)
(CCE - Certified Computer Examiner)
http://www.isfce.com/
Sans (GFCA - Certified Forensic Analyst & GFCE - Certified Forensic Examiner) http://www.sans.org/
The list goes on and on.
Two books you might want to check out are
Guide to Computer Forensic Investigations
http://www.amazon.com/Guide-Computer-Forensics-Investigations-Nelson/dp/1435498836
and
File System Forensic Analysis
http://www.amazon.com/System-Forensic-Analysis-Brian-Carrier/dp/0321268172
No comments:
Post a Comment