Join us for our 1-day Digital First Responder Class! A great way to train your IT staff in fundamental incident response and digital forensic preservation, and ramp up new incident responders quickly and cost-effectively. Includes an Incident Response tabletop exercise plus three hands-on labs, in which you will create a forensic image, preserve volatile memory, and capture network traffic.
When: Thursday, June 8th from 8:30am-5:30pm
Where: LMG Security
145 West Front St. Missoula, MT 59801
Instructor: David Harrison, GCFA or Sherri Davidoff, GCFA
- Incident Detection, Triage and Communication
- Evidence Preservation Fundamentals
- Network-Based Evidence Acquisition
- Hard Drive Imaging
- Volatile Evidence Collection [memory, processes, network connections, etc.]
- A bootable Kali Linux USB with digital forensics tools
- Workbook with three labs and sample incident response policies
Who Should Take This Class:
- IT staff tasked with responsibility for detecting and triage of incidents on computer systems
- Incident response team members who are involved in responding to data breaches
- Help Desk staff that may be the first point of contact for reports of suspicious activity
Anyone with a general technical background who might be asked to respond to a suspected cybersecurity incident
Tuition and Registration Deadlines
|Early Bird Registration
|| May 18
|| June 1
|| June 6
Tuition is non-refundable and must be paid in full on or before the registration deadline in order to qualify for the price listed.
Students should bring:
- Windows laptop capable of booting off of a USB thumb drive, with a power cable. (We will give you Kali Linux thumb drives to boot off of for the exercises.)
- Separate USB thumb drive, large with more storage space than the RAM of your computer. Typically 32G works well. We will be formatting these during class, so please make sure there’s nothing on there that you care about. Also, you don’t want them to be huge (ie 128G) because that can take a long time to format.
- Smartphone capable of taking photographs, or digital camera.
Sherri Davidoff is a founder of LMG Security and the co-author of "Network Forensics: Tracking Hackers Through Cyberspace" (Prentice Hall, 2012). She has fifteen years of experience as a cyber security professional, specializing in digital forensics, security awareness training, penetration testing and web security assessments. Sherri has authored courses for the SANS Institute and Black Hat, and conducted onsite security training for the Department of Defense, Google, Comcast, and many other organizations. Sherri is adjunct faculty in both the School of Business and the Computer Science Department at the University of Montana, where she teaches cybersecurity classes. She is a GIAC-certified forensic examiner (GCFA) and penetration tester (GPEN), and holds her degree in Computer Science and Electrical Engineering from MIT.
David Harrison is a Senior Security Consultant with LMG Security. He is the co-author of the “Network Forensics: Continuous Monitoring and Instrumentation” course, and an instructor at the global Black Hat security conferences. David has extensive experience conducting incident response and complex forensics investigations, including large-scale ransomware infections, HIPAA data breaches, and intellectual property theft. He is the co-inventor of the "Do-It-Yourself Cellular Intrusion Detection System," an open-source project designed to detect infected smartphones on a network. David specializes in mobile device forensics, network forensics and scalable log analysis solutions, and is a GIAC Certified Forensic Analyst (GCFA).