← Back to all courses

Network Forensics Analyst Course

Practical course on network forensics for incident response needs

Enroll now

Format

Online, onsite (for private groups)

Duration

2 days

Level

Medium

Language

English

Arabic

Vietnam

Target participants

Incident response team members

Handle incidents that require collecting, analyzing, and correlating network evidence to uncover malicious activity.

Information security specialists

Expand forensic investigation capabilities by working with network traffic artifacts and structured analysis procedures.

SOC and CERT analysts

Investigate network intrusions by analyzing DNS, HTTP, and packet-level data linked to security incidents.

Digital forensics specialists

Deepen expertise in network traffic analysis using professional forensic tools and advanced investigation techniques.

Course modules

Fundamentals

Types of network digital evidence
Challenges for large infrastructures

Collection of network digital evidence

Identification of forensic artifacts in network traffic
Practical skills in traffic capture and utilities

Network traffic analysis procedure

Analysis of network artifacts
Identification of forensic evidence in DNS and HTTP traffic
Overview of threat intelligence sources for data enrichment
Advanced network analysis tools and techniques
Attack reconstruction

Course certificate

At the end of the course, you will receive a personal certificate confirming your expertise and strengthening your professional credibility

Trainers

Ahmed Nosir

Cybersecurity Consultant

Ahmed Nosir

Ahmed has been working in Security Operations Center over the last three years, transitioning his expertise from penetration testing to Digital Forensics and Incident Response and regularly takes part in complex incident response operations.

Ahmed has conducted numerous training sessions, molding the new age cybersecurity professionals. His expertise doesn’t just stop at identifying digital threats, but extends to fostering a culture of continuous learning and curiosity among aspiring cyber experts.

Moataz Nasr

Cybersecurity Consultant

Moataz Nasr

Moataz carries over three years of specialized cybersecurity expertise, particularly in the realm of red teaming and penetration testing, where he has honed his skills in identifying and mitigating vulnerabilities within various systems and networks. Moataz has led several training sessions, playing a pivotal role in shaping and developing the next generation of cybersecurity professionals helping them navigate the landscape of modern cyber threats.

Nam Le Phuong

Senior Digital Forensics & Incident Response Specialist

Nam Le Phuong

Nam has over 13 years of experience in cybersecurity and specializes in digital forensics and incident response. At Group-IB, he investigates advanced cyber threats and supports organizations during complex security incidents, including ransomware attacks and post-compromise activity in enterprise and critical infrastructure environments.

Nam is a contributor to the MITRE ATT&CK® framework and has published technical research on advanced threat actor techniques, including ransomware operations and Linux-based evasion methods.