SIT703 - Advanced Digital Forensics


2020 unit information

Enrolment modes: Trimester 2: Burwood (Melbourne), Waurn Ponds (Geelong), Cloud (online)
Credit point(s): 1
EFTSL value: 0.125

From 2021: SIT716

For students enrolled in S778, S779: Nil



Incompatible with:


Study commitment

Students will on average spend 150 hours over the teaching period undertaking the teaching, learning and assessment activities for this unit.

Scheduled learning activities - campus

1 x 1 hour class per week, 1 x 2 hour face-to-face workshop per week.

Scheduled learning activities - cloud (online)

1 x 1 hour online seminar per fortnight.


This unit will allow the student to explore various options available to organisations in investigating problems and attacks on their computer systems. Students will consider a range of computer forensic frameworks and generate their own framework in order to assist organisations with systematically documenting, analysing and solving cyber security issues. In SIT703, students will study exploitation techniques including shellcode, DLL hooking and authentication eavesdrop. They will learn how to use system log files, domain authentication and registry mechanisms to acquire digital evidence. They will identify the existence of rootkits and learn how to prevent attacks. The key focus of SIT703 is on identification, preservation, analysis and presentation of digital evidence related to a misuse or intrusion to an enterprise-level system.

Unit Fee Information

Click on the fee link below which describes you:

Talk to a Deakin adviser about studying at Deakin today

Call 1800 693 888Monday to Friday: 9am to 5pm AEDT
Chat live nowMonday to Friday: 8am to 7pm AEDT