When the security of an SQL Server database is breached, sometimes forensic investigators are unable to qualify or assess the scope of the intrusion. In such cases, they are forced to publicly report the damage. A disclosure like this is painful not only for customers but for companies as well, who have to risk their reputation and brand image. To avoid this scenario, the best way is to master specialized skills required to deeply investigate intrusions on SQL Server.
SQL Server Forensic Analysis Training teaches participants how they can gather and preserve database artifacts securely and without any disruption. Then perform in-depth analysis to verify or rule out any database intrusions. The forensic analyst then retraces activities of the intruder in database server.
The techniques explained in this course can be used to determine unauthorized data access or modifications as well as to collect information required for database recovery by restoring to an earlier state.
The course imparts skills to perform the following activities:
Determine whether or not data was compromised in a database intrusion, and if so, then the extent of damage
Applying real world forensic methodologies on SQL Server instances
Recognizing, extracting, and evaluating evidence from published as well as unpublished areas in SQL Server
Designing an incident response toolkit for SQL Server
Detecting and eliminating SQL Server rootkits
Finding and recovering the lost database data with the help of native SQL Server commands
Koenig offers SQL Server Forensic Analysis in 3 different tracks and at 4 locations in India - Delhi, Dehradun, Shimla (Himalayas) and Goa Beach.