Bright days ahead: our UK training centre has reopened.

CREST - Practitioner Intrusion Analyst (CPIA)

Varighed

Varighed:

Kun 4 dage

Metode

Metode:

Klasseværelse / Online / Hybrid

Næste dato

Næste dato:

28/9/2020 (Mandag)

Overview

On this 4-day accelerated CREST Practitioner Intrusion Analyst course, you'll become familiar with the basics of the three primary areas of cyber-attack analysis: network intrusion, host intrusion and malware reverse engineering.

You'll be CREST CPIA trained 20% faster than traditional courses. You'll be immersed in the CPIA curriculum using our unique Lecture | Lab | Review technique - helping you build and retain information faster.

Your expert instructor will guide you through how to detect and handle an attack. Then trace, acquire, investigate, analyse and re-construct the incident. Throughout your CPIA training you'll study the basics of malware analysis by understanding the key tools and techniques malware analysts use to examine malicious programs.

Achieve the CPIA certification fast as you learn:

  • Soft Skills and Incident Handling - incident chronology, record keeping, law and compliance
  • Core Technical Skills - file system permissions, network architectures and cryptography
  • Network Intrusion Analysis - unusual protocol behaviour, internal spread and privilege escalation
  • Analysing Host Intrusions - identifying suspect files, malware behaviours and anti-forensics
  • Reverse Engineering Malware - hiding techniques, binary obfuscation and processor architectures

During the course, you'll prepare for the CPIA exam. Don't pass the first time? Don't worry - we've got you covered with your Certification Guarantee.

This course is ideal for you if you're a systems administrator, incident handler, IT manager, Government or law enforcement wishing to expand your knowledge on Digital Forensics. This is also a perfect starting point for those hoping to start a career in Intrusion Analysis or Digital Forensics as this course sets a new security baseline.

The CPIA certification is a prerequisite for the CREST Registered Intrusion Analyst course.

Her er 4 gode grunde til at du skal tage CPIA hos Firebrand:

  1. Du bliver CPIA uddannet og certificeret hurtigere. Du lærer mere på vores 6 dages accelererede kursus og får mindst 12 timers daglig uddannelse i et distraktionsfrit miljø.
  2. Dit CPIA kursus er alt-inklusiv. Du får en gennemskuelig pris, der dækker alle kursusmaterialer, eksamen, overnatning og forplejning. Du skal ikke tænke på andet end at lære.
  3. Bestå CPIA den første gang eller kom tilbage, gratis. Din instruktør er ekspert, og træner dig ud fra accelererede metoder, så du lærer hurtigere og har de bedste muligheder for at bestå eksamen første gang. Men hvis du mod forventning ikke består, er du dækket af vores Certificeringsgaranti.
  4. Tag CPIA hos en prisvindende uddannelsesleverandør. Vi har vundet adskillige udmærkelser heriblandt Microsofts "Årets Learning Partner" hele fem gange og to Børsen Gazelle priser. Firebrand er din hurtigste vej til uddannelse, og vi har sparet 70,000 deltagere for mere end en million spildte timer siden 2001.

Benefits

Curriculum

Module 1: Soft Skills and Incident Handling

  • Engagement Lifecycle Management
  • Incident Chronology
  • Law & Compliance
  • Record Keeping, Interim Reporting & Final Results
  • Threat Assessment

Module 2: Core Technical Skills

  • IP Protocols
  • Network Architectures
  • Common Classes of Tools
  • OS Fingerprinting
  • Application Fingerprinting
  • Network Access Control Analysis
  • Cryptography
  • Applications of Cryptography
  • File System Permissions
  • Host Analysis Techniques
  • Understanding Common Data Formats

Module 3: Background Information Gathering & Open Source

  • Registration Records
  • Domain Name Server (DNS)
  • Open Source Investigation and Web Enumeration
  • Extraction of Document Meta Data
  • Community Knowledge

Module 4: Network Intrusion Analysis

  • Network Traffic Capture
  • Data Sources and Network Log Sources
  • Network Configuration Security Issues
  • Unusual Protocol Behaviour
  • Beaconing
  • Encryption
  • Command and Control Channels
  • Exfiltration of Data
  • Incoming Attacks
  • Reconnaissance
  • Internal Spread and Privilege Escalation
  • Web Based Attacks
  • False Positive Acknowledgement

Module 5 Analysing Host Intrusions

  • Host-Based Data Acquisition
  • Live Analysis Laboratory Set-up
  • Windows File System Essentials
  • Windows File Structures
  • Application File Structures
  • Windows Registry Essentials
  • Identifying Suspect Files
  • Storage Media
  • Memory Analysis
  • Infection Vectors
  • Malware Behaviours and Anti-Forensics
  • Rootkit Identification
  • Live Malware Analysis

Module 6: Reverse Engineering Malware

  • Windows Anti-Reverse Engineering
  • Functionality Identification
  • Windows NT Architecture
  • Windows API Development
  • Binary code structure
  • Cryptographic Techniques
  • Processor Architectures
  • Windows Executable File Formats
  • Hiding Techniques
  • Malware Reporting
  • Binary Obfuscation
  • Behavioural Analysis

Module 7: CPIA Exam Preparation & Mock Exam

  • CPIA- Examination Guidance
  • CPIA- Mock Examination

Exam Track

The CREST Practitioner Intrusion Analyst exam is a closed book exam comprising of 120 multiple choice questions.

Exam time: 2 hours

The exam fee is not included in the course price. If you wish to take the exam, we'll provide instructions on how to register with CREST.

What's Included

On this course, you'll get CREST Practitioner Intrusion Analyst courseware.

Det hele er inkluderet! Du får en alt-inklusiv kursuspakke, som er målrettet til dine behov. Vi tager os af enhver detalje, så det eneste du skal fokusere på er dine lærings- og certificeringsmål.

  • Transport til/fra specifikke afhentningssteder
  • Overnatninger, samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Intensiv Hands-on uddannelse med vores unikke (Lecture | Lab | Review)TM metode
  • Omfattende kursusmaterialer og labmanualer
  • Et helt igennem instruktørstyret program
  • 24 timers adgang til både undervisningslokale og instruktøren
  • Samtlige måltider samt adgang til forfriskninger, snacks, kaffe og the.
  • Certificeringsgaranti

Prerequisites

To attend this course, you should have a good understanding of the technical aspects of IT with at least one year's experience in network or server administration.

Er du klar til dit Firebrand Kursus?

Vi interviewer alle potentielle deltagere angående deres baggrund, uddannelser, certificeringer og personlig indstilling. Hvis du kommer igennem denne screeningsprocedure, betyder det, at du har rigtig gode chancer for at bestå.

Firebrand Training tilbyder et ambitiøst uddannelsesmiljø, som forudsætter at du dedikerer dig til kurset. Ovenstående forkundskaber er vejledende; mange deltagere med mindre erfaring, men med en anden baggrund eller færdigheder, har haft succes med accelereret uddannelse hos Firebrand Training.

Hvis du funderer på hvorvidt du opfylder de anbefalede forkundskaber, er du meget velkommen til at ringe til os på 78 79 16 53 og tale med en af vores uddannelsesrådgivere, som kan hjælpe dig.

Kundereferencer

Vi har uddannet over 76.283 personer i løbet af 12 år. Vi har bedt dem alle om at bedømme vores accelererede kurser. Aktuelt har 96,74% sagt, at Firebrand oversteg deres forventninger:

"The course was highly informative, providing a broad range of information. The instructor was extremely knowledgable and enthusiastic. This information will be extremely valuable as a Cyber Security Analyst."
M.P.. (6/8/2018 (Mandag) til 9/8/2018 (Torsdag))

"I believe the the course to greatly informative, content covers a large amount of the areas surrounding intrusion analysis. Information learned here will be taken forward and applied in real life scenarios in the future."
R.D.. (6/8/2018 (Mandag) til 9/8/2018 (Torsdag))

"Good trainers, well looked after with regards to accommodation and food."
Matt Finn, PwC. (6/8/2018 (Mandag) til 9/8/2018 (Torsdag))

"The course was highly informative, providing a broad range of information. The instructor was extremely knowledgable and enthusiastic. This information will be extremely valuable as a Cyber Security Analyst."
M.P.. (6/8/2018 (Mandag) til 9/8/2018 (Torsdag))

"I believe the the course to greatly informative, content covers a large amount of the areas surrounding intrusion analysis. Information learned here will be taken forward and applied in real life scenarios in the future."
R.D.. (6/8/2018 (Mandag) til 9/8/2018 (Torsdag))

Kursusdatoer

Starter

Slutter

Tilgængelighed

Sted

Tilmelding

25/5/2020 (Mandag)

28/5/2020 (Torsdag)

Afsluttet - Giv feedback

-

 

28/9/2020 (Mandag)

1/10/2020 (Torsdag)

Venteliste

Landsdækkende

 

9/11/2020 (Mandag)

12/11/2020 (Torsdag)

Begrænsede pladser

Landsdækkende

 

21/12/2020 (Mandag)

24/12/2020 (Torsdag)

Tilgængelige pladser

Landsdækkende

 

1/2/2021 (Mandag)

4/2/2021 (Torsdag)

Tilgængelige pladser

Landsdækkende

 

15/3/2021 (Mandag)

18/3/2021 (Torsdag)

Tilgængelige pladser

Landsdækkende

 

Seneste anmeldelser fra vores studerende