A 5-day hands-on skill enhancement boot camp on

Digital Forensics Concepts with Modern Tools


The workshop will help the participants to get fundamental concepts and principles of digital forensics and its relevance to digital investigations and the examination process. It will demonstrate the recovery of digital artifacts in forensically sound manners from different OS i.e. Windows/Mobile environments. Participants will explore the forensic tools and procedures for recovering evidence from activities on the Network/Mobile. Examine and analyze the Social Media applications regarding cyber-criminal activities using modern tools. Becoming a part of this exciting workshop helps to enhance the participant's knowledge of digital forensics through enlightening lectures and training classes.

Learning Outcomes

In this workshop series, participants will learn the basics of digital forensics concerning various domains, such as Windows forensics (i.e. volatile memory, registry, and logs), Mobile Applications, and Network Investigation by employing forensics tools set through hands-on projects. Participants will
  • Understand the case studies with practical Labs of Acquisition of evidence in Windows, Android, and Network environments.
  • Learn to examine and analyze the acquired evidence and artifacts from various tools set for the court of law.
  • Learn about Multimedia files forgery detections, rebuilding the missing headers, and identifications of malicious headers.
  • Learn how to analyze Twitter, Facebook, and other social media artifacts (events, posts) to build the crime scene reconstructions.

Who Is This Training For?

  • Recent graduates looking to bolster their skillset.
  • Digital forensics investigators who aim to benefit from current market trends.
  • Cyber security and researchers who want to solve challenging digital investigation cases through modern tools.
  • Technology leaders who want to stay ahead in the competition by empowering their organizations with Digital Forensics Laboratory.
  • Undergraduate students aiming to accomplish their FYPs in the domain of Cyber Forensics.


Dr. Mehdi Hussian
Dr. Mehdi Hussian
Assistant Professor NUST
SEECS, Pakistan
Muhammad Moazam fraz
Dr Muhammad Moazam Fraz
Associate Professor NUST
SEECS, Pakistan


Machine Vision and Intelligent Systems Lab, SEECS NUST

Program Details

Monday, 1 August 2022
Overview of Digital Forensics Professions and Investigations
  • 10:00 AM – 01:00 PM
    • Fundamentals of Digital Forensics, History
    • Overview of NIST 800-86
    • Preparation for Digital Investigation
    • Maintaining Professional Conducts
    • Process for Investigation for Private High-Tech Organization
    • Establishing Investigation Office/Laboratory with Software and Workstation
  • 02:00 PM – 04:00 PM
    • ProDiscover, Access Toolkit Installation, and Configurations
    • Use cases investigations using tools
Tuesday, 2 August 2022
Overview of Processing of Crime and Incident Scenes with Data Acquisition for Forensics Investigations
  • 10:00 AM – 01:00 PM
    • Identifying & Collecting Digital Evidence
    • Processing Law Enforcement Crime Scene
    • Seizing the Digital Evidence on Crime Scene
    • Storing Digital Evidence
    • Understanding the Digital Storage Formats
    • Determine the Best Acquisition Method
    • Contingency Planning for Image Acquisition
    • Validating Data Acquisition using Digital HASH
  • 02:00 PM – 04:00 PM
    • Acquiring the Digital Images of Devices using Acquisition Tools
    • Verification of Acquired Images through Multiple Tools
Wednesday, 3 August 2022
Overview of Windows System Artifacts for Investigation
  • 10:00 AM – 01:00 PM
    • Understanding the File System
    • Exploring the Microsoft File Structures
    • Examining of NTFS Disks
    • Understanding of Whole Disk Encryption
    • Understanding and Examine of Registry
    • Understanding and Examine Events/Logs
    • Virtual Machine Architecture
  • 02:00 PM – 04:00 PM
    • Examination of Operating System File Structures
    • NTFS unallocated cluster Identifications for data recovery
Thursday, 4 August 2022
Overview of Multimedia Files & Mobile Forensics
  • 10:00 AM – 01:00 PM
    • Understanding Multimedia Files Formats
    • Understanding Data Compression
    • Identifying unknown Files Format
    • Understanding Mobile Device Forensics
    • Acquisition Procedures for Mobile Devices
    • Acquisition and Analysis of Mobile Applications Artifacts
  • 02:00 PM – 04:00 PM
    • Processing Evidence Containing Graphics Images
    • Locating Graphics in Unreadable Partitions
    • Look for suspicious files
    • Examine files that have bad extensions
    • Identify JPEG header signatures
Friday, 5 August 2022
Overview of Network and Social Media Forensics
  • 10:00 AM – 01:00 PM
    • Performing Live Acquisitions
    • Overview of Network Forensics
    • Packet Capture and Analysis
    • SSL/TLS Traffic Analysis
    • Firewall and Applications Logs
    • Applying Digital Forensics Methods to Social Media Applications
    • Creating User Profiles
  • 02:00 PM – 04:00 PM
    • Analysis of Wireshark PCAPs files
    • Extract the Twitter data against users, events, and incidents and used it for analysis
    • Extract the geolocation information of users/groups' posts data for analysis
    • Extract the Facebook page's various types of data i.e. comments, posts, and likes for analysis

Contact Details