DC3 Twitter DC3 YouTube DC3 LinkedIn DC3 Facebook
DC3 Banner


IT220, Counterintelligence in Cyber Space (CICS)


Who Should Attend:
DoD Counterintelligence personnel.

Prerequisites:
TT110 (INCH) and RT120 (CIRC) or Test outs

Duration:
10 Days

Course Description:
Provides Department of Defense Counterintelligence (CI) personnel with the fundamentals for conducting basic cyber CI investigations. CICS builds upon the curriculum of CIRC and provides students with a working knowledge of online investigations, mobile and cell-phone acquisition and electronic media triage.

Objectives:

  • Conduct a rapid evaluation of electronic devices likely to contain data of interest to the investigator
  • Preserve, image, and analyze data stored on portable electronic devices
  • Use the Internet as an investigative tool while maintaining anonymity
  • Define counterintelligence indicators on IT systems
  • Explain the Cyber counterintelligence methodology
  • Conduct a basic forensic examination limited in time and scope
  • Design technical, IT-based questions for interviews
  • Identify new and emerging technologies likely to impact the CI mission

Topics Covered:

Cyber CI Environment

  • Introduction to and Methodology of Cyber Counter Intelligence Investigations

Online Environment

  • Investigative Preparation, Fundamentals and Anonymous Internet Connectivity

Internet Clients and Services

  • Investigating Web Pages, E-mail, Usenet, Internet Messaging, Internet Chat, Web Forums and Online Communities
  • VoIP Considerations

Investigating Internet File Sharing Clients and Services

  • FTP and Peer-to-Peer

Online Investigative Analysis

  • Artifact Analysis
  • Subject Identification

Cyber CI Triage

  • Triage of Electronic Information
  • Pod Slurping
  • Introduction to FTK Imager

EnCase Fundamentals

  • Introduction to EnCase and it’s Graphical User Interface
  • Beginning a Case in EnCase
  • Bookmarking

Rudimental Forensic Analysis

  • File Identification
  • Using Hash Sets
  • Keyword Searching and Data Extraction
  • E-mail and Newsgroups
  • Web Related Evidence

Alternative Devices and Technology Concerns

  • Cellular Phones, PDAs, iPhone
  • GPS Navigation Devices
  • Digital Media Players and Cameras
  • Steganography
  • Encryption and Encrypted Volumes
  • Wireless Hardware and Discovering Wireless Access Points
  • Key Loggers
  • Fundamentals of Log Analysis

Cyber Interview Techniques

  • IT Interviews, Ad hoc Interviews and Questions

CICS Course Description

Page Last Modified: 30 December 2009  |  Page Last Reviewed: 30 December 2009  |  DoD   |   USA.gov   |   External Link Disclaimer   |   Disclaimer