California Criminalistics Institute / Rancho Cordova
This 28-hour course is designed for criminal investigators, prosecutors, or support staff whose duties include investigation and prosecution of high-technology crimes and the seizure of electronic evidence. Students will learn the fundamentals of computer operations and hardware function, and how to protect, preserve, and image digital evidence. This class will introduce students to the unique skills, best practices and methodologies necessary to assist in the investigation and prosecution of computer crimes, on such topics as partitioning, formatting, data storage, hardware and software write blockers, the boot up process, and duplicate imaging.
Lectures, presentations, and hands-on classroom exercises
Students will have the knowledge necessary to seize and image digital evidence correctly, be aware of advanced capabilities of software tools available for forensic analysis, have used some of the more popular tools, and be able to properly and effectively develop, analyze and present for prosecution, a digital evidence case.
Completion of D100 Computer Crime-High Technology Investigation and D200 Computer Crime-Investigation of Internet Crimes courses and successfully pass DOS Command pre-test.
Students should be peace officers, criminal investigators, prosecutors, or support staff assigned to a computer crime unit or task force who are, or will be required to conduct computer forensic examinations of seized digital evidence. Students must already possess a good understanding of computers and common software applications.