Becoming a digital detective

  • How cyber crime investigation works?
  • What steps need to be taken?
  • How to solve real world cyber crimes?

19 - 20 April 2021

2 x 4 Hours
(9:00-13:30 including breaks)

Intermediate /Hands-on

What you will learn

  • You will understand how cyber crime investigation works
  • How to perform cyber investigation, acquire evidence and process evidence
  • Write a report like a cyber investigator 
  • How to solve real world cyber crimes in 8 hrs!

The workshop aims to teach the participants basics of forensics and how forensics investigators work in securing an evidence, obtaining the evidence, preserving the evidence and investigating the evidence.

19 - 20 April 2021

Online, Webex

396 € until March 21
450 € from March 22
(Prices are without VAT)

Workshop content

  • Introduction to Locard’s principle 
  • Obtaining an evidence using FTK imager

Lab: Using FTK imager and using it export an image for forensics and investigating a E01 file 

  • Performing Software blockers to avoid overwriting of evidences 
  • File system identification 

Lab: Using Hex editor to find out magic values of files 

  • Recovering files from forensic image 
  • Lab: Recovering files from forensic image and examining it using tools and techniques 
    • Analysis of victims machine for browser artifacts

    Lab: Analysis of browser history, cache, cookies and event logs for clues

    • Memory forensics
    Lab: Parsing memory images for files, process, passwords, e-mail and history
    • Network Traffic analysis 
    Lab: Basic network traffic analysis for extracting IOC
    • SIM card Forensics

    Lab: Performing forensics of a SIM card and a phone to extract data 

    • Writing a case report of the entire timeline

    19 - 20 April 2021

    Online, Webex

    396 € until March 21
    450 € from March 22
    (Prices are without VAT)

    What to expect

    • Online hands-on workshop - 2 days, 4 hours each 
    • Q&A sessions - lector will be available to answer your questions 
    • Recording of the workshop 

    Target audience

    Security analysts, security researchers, forensic investigators, evidence examiners, digital forensic examiners, legal and law and security enthusiasts

    Maximum number of attendees: 25
    Language: English
    Prerequisites: None, all we need is you and your computer.


    Shyam Sundar Ramaswami

    Lead Security Threat Researcher at CISCO Umbrella

    Shyam Sundar Ramaswami is a two time TEDx speaker, Black Hat speaker, GREM certified malware analyst, Cisco Security Ninja black belt and teaches cyber security using “Batman” & ” Avengers” characters. Shyam leads the Threat research group for Umbrella Asia Pacific and is a threat researcher in Cisco. Shyam has delivered talks in several conferences and universities like Black Hat (Las Vegas), Stanford University (Cyber Security Program), Qubit Forensics (Serbia), Nullcon 2020 (Goa), Cisco Live (Barcelona), IRespond (San Francisco), Defcon Packet Village (remote) and in several IEEE forums in India.

    Shyam has also taught classes on “Advanced malware attack and defences” in Stanford University Cyber security program and runs a mentoring program called being robin where he mentors students all over the globe on cyber security.

    For more information contact our colleague Denisa.
    Denisa Lavkova | | +421 948 959 957