Digital Forensics- Network Investigation Course Overview

Network Forensics is a branch of Digital Forensics that helps collect evidence against cyber criminals and aids in proving their malign intentions. If you want to become a forensic investigator, this network forensics course is the right way forward. Learn about systematically identifying intrusions, gathering information, and collecting legal evidence against black hat hackers and network intruders.

This is a Rare Course and it can be take up to 3 weeks to arrange the training.

  • 1. Do you have limited Window for training?
  • 2. Can you only spend 4-hours per day?
  • 3. Do you want to start training immediately?
  • If your answer is yes to any one of the above, you need 1-on-1- Training
The 1-on-1 Advantage
Flexible Dates
4-Hour Sessions
  • View video
  • The course will be free if we are not able to start within 7 days of booking.
  • Only applicable for courses on which this logo appears.

Your will learn:

Module 1: Investigation Strategies
  • Concepts of Digital Evidence
  • Challenges Relating to Evidence
  • Network Forensics Investigation Methodologies
  • Source of Network Based Evidence
  • Principals of Internetworking
  • IP Suite
  • Network Traffic Acquisition Software
  • Active Acquisition
  • Protocol Analysis
  • Packet Analysis
  • Flow Analysis
  • Higher layer traffic Analysis
  • Sensor
  • Flow Record Export Protocol
  • Collection and Aggregation
  • Analysis
  • Wireless traffic capture and analysis
  • Common Attacks
  • Locating Wireless Devices
  • NIDS/NIPS Functionality
  • Modes of Detection
  • Snort and packet logging
  • Source of Logs
  • Network Log Architecture
  • Collecting and Analyzing Evidence
  • Switches: Why Investigate Switches?
  • Content-Addressable Memory Table
  • Switch Evidence
  • Router: Why Investigates Routers?
  • Router Evidence
  • Logging
  • Web Proxy Functionality
  • Evidence under Web Proxy
  • Web Proxy Analysis
  • Encrypted Web Traffic
  • Covert Tunnelin
  • DNS Tunnels
  • ICMP Tunnel Analysis
  • Botnets
  • Encryption and Obfuscation
  • Network Behavior of Malware
Live Online Training (Duration : 40 Hours) Fee On Request
Group Training
06 - 10 Jun 09:00 AM - 05:00 PM CST
(8 Hours/Day)
11 - 15 Jul 09:00 AM - 05:00 PM CST
(8 Hours/Day)
1-on-1 Training
4 Hours
8 Hours
Week Days

Start Time : At any time

12 AM
12 PM

1-On-1 Training is Guaranteed to Run (GTR)
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request
Classroom Training is available. Enquire for the fee Click
Ultra-Fast Track

If you can't spare 40 hours. We can offer you an Ultra-Fast Track for 20 hours

Course Prerequisites

Before attending this course, students should have one year of experience managing Windows/Unix/Linux systems or have equivalent knowledge and skills

  • Good Understanding of TCP/IP is required
  • It is recommended that CEH is done before CHFI.

Upon Completion of this Course, you will accomplish following:-

  • identify and analyze security attacks
  • NIDS evidence gathering
  • Acquisition process
  • Flow Analysis
  • Protocol Analysis
  • Wireless Network Analysis
  • Event Correlation and Aggregation.

Give an edge to your career with Other Technologies certification training courses. Students can join the classes for Digital Forensics - Network Investigation at Koenig Campus located at New Delhi, Bengaluru, Shimla, Goa, Dehradun, Dubai & Instructor-Led Online.

Request More Information

Add Name and Email Address of participant (If different from you)


Yes, fee excludes local taxes.
The Fee includes:
  • Courseware
  • Remote Labs
Yes, Koenig Solutions is a Open Source Learning Partner