During this four-day training, the participants learn to handle the technical challenges of the Windows NTFS file system and additionally, how to subject the Master File Table to an in-depth analysis. This is an intensive, practice-oriented training with practical case studies.
For whom is this training intended? The hands-on training is intended for experienced digital investigators, network administrators and the IT security administrators that want more insight into NTFS and Windows networks in relation to cyber crime. The participants in this training are required to be familiar withEnCase. Additionally, they must have ample experience when it comes to computer investigation.
What will you learn during the training?
Thoroughly analyse the Master File Table (MFT).
Gain a thorough understanding of the NTFS file system.
Investigate Windows artefacts and assess their value as evidence.
Recover erased NTFS partitions.
Comprehending register information like the NTUSER.DAT and the SAM-file.
We find it very important that you are aware of which cookies our website uses and for which purposes. We use Functional Cookies to make our website function properly. In addition, we use Analytics Cookies to analyze the use of our website. We also ask your permission for the placement of cookies from third parties (social media, advertising and analytics partners) with whom we share information. By clicking 'Accept', you accept the placement of the above mentioned cookies. If you click on 'Settings', you will be taken to a page where you can specify which cookies may and may not be placed. Click here for our Privacy Statement.