Forensics and Malware Analysis

Module Title - Forensics and Malware Analysis
Number of credits – 10

Module description 

This module will teach you how to investigate and respond to cyber security incidents. This will include developing technical skills such as disk image and network log analysis, as well as high-level skills such as knowing what to do when investigating a system that might have been attacked.

On successful completion of this module, you should be able to:

  • analyse a disk image, including one that has been subject to partial erasure or overwriting.
  • analyse a suite of logs from a mixed infrastructure and describe the events that have taken place.
  • analyse malware samples and their effect on a computer system, applying techniques of digital forensics and program analysis.
  • to write a report suitable for use as evidence.

Teaching and assessment:

Sessional: Examination (80%), continuous assessment (20%). 
Supplementary (where allowed): Exam (100%)
Semester 2
Contact hours - 22