The eCDFP is a certification for individuals with highly technical understanding of networks, systems and cyber attacks. Everyone can attempt the certification exam, however here are the advised skills, taught within the DFP course, to possess for a successful outcome:

  • Understanding a letter of engagement and the basics related to a forensic investigation engagement
  • Deep understanding of networking concepts
  • Knowledge of digital forensics processes and methodologies
  • Proficiency in file & disk analysis
  • Ability in analyzing Windows artifacts
  • Ability in analyzing traffic capture files
  • In-depth knowledge of file systems and disk editors
  • Ability in constructing actionable timelines
  • Proficiency in log analysis
  • Manual intrusion detection skills using the established forensics-related toolkit
  • Ability in correlating data from various sources
Go to top of page