SIT703 - Advanced Digital Forensics

Year: 2019 unit information
Enrolment modes: Trimester 2: Burwood (Melbourne), Waurn Ponds (Geelong), Cloud (online)
Credit point(s): 1
EFTSL value: 0.125
Unit chair:

Leo Zhang

Prerequisite:

Nil

Corequisite:

Nil

Incompatible with:

Nil

Contact hours:

Campus: 1 x 1 hour scheduled online seminar per fortnight, 1 x 2 hour face-to-face workshop per week.
Cloud (online): 1 x 1 hour scheduled online seminars per fortnight.

Note:

This unit uses the FutureLearn online learning platform. Learn more about studying through FutureLearn.

Content

This unit will allow the student to explore various options available to organisations in investigating problems and attacks on their computer systems. Students will consider a range of computer forensic frameworks and generate their own framework in order to assist organisations with systematically documenting, analysing and solving cyber security issues. In SIT703, students will study exploitation techniques including shellcode, DLL hooking and authentication eavesdrop. They will learn how to use system log files, domain authentication and registry mechanisms to acquire digital evidence. They will identify the existence of rootkits and learn how to prevent attacks. The key focus of SIT703 is on identification, preservation, analysis and presentation of digital evidence related to a misuse or intrusion to an enterprise-level system.

Assessment

Technical report 20%, case investigation report 20%, examination 60%

Unit Fee Information

Click on the fee link below which describes you: