Digital forensics

1.

Subject title

Digital forensics

Дигитална форензика

2.

Code

F23L3S093

3.

Study program

Примена на информациски технологии, Софтверско инженерство и информациски системи, Компјутерски науки, Компјутерско инженерство, Интернет, мрежи и безбедност, Информатичка едукација, Software engineering and information systems, Примена на информациски технологии, Софтверско инженерство и информациски системи, Компјутерски науки, Компјутерско инженерство, Интернет, мрежи и безбедност, Software engineering and information systems, Стручни студии за програмирање, Стручни студии за програмирање, Security, Cryptography and Coding,

4.

Organizer of the study program (unit, institute, department, division)

Faculty of Information Sciences and Computer Engineering

5.

Study cycle (first, second, third)

Прв циклус

6.

Academic year / semester

3 / Летен

7. Number of ECTS credits

6.0

8.

Instructor

проф. д-р Весна Димитрова

9.

Prerequisites for enrollment

Оперативни системи

10.

Subject goals and competencies:

After completing the course, students will gain knowledge of the principles and techniques required for a digital forensic investigation. Students will also gain hands-on experience working with different forensic tools for different operating systems.

11.

Subject content:

(1) Basics of digital forensics, analysis and management of the situation after an attack (1) Data System Forensics, Forensics Plan and Technologies in Linux and Android (1) Memory Forensics in Windows Systems and tools used under Windows (1) Windows data system forensics tools (1) Data collection on Windows/Linux systems (1) Forensic analysis of Windows using registries and other artifacts (1) Rootkits kernel modules (1) Techniques for structuring the obtained data from digital forensics and their visualization (1) Techniques and tools for detecting money laundering and Internet crime (1) Blockchain Technology And Etherhium (1) Using blockchain technology for forensic applications (1) Using chain analysis to protect the integrity of digital things.

12.

Learning methods:

Предавања поддржани со презентации преку слајдови, интерактивни предавања, вежби (користење на опрема и софтверски пакети), тимска работа, пример случаи, поканети гости предавачи, самостојна изработка и одбрана на проектна задача и семинарска работа, учење во електронско опкружување (форуми, консултации).

13.

Total available time fund

6.0 ECTS x 30 hours = 180 hours

14.

Time distribution

30 + 45 + 15 + 15 + 75 = 180 hours

15.

Forms of teaching activities

15.1.

Lectures - theoretical teaching

30 hours

15.2.

Exercises (laboratory, classroom), seminars, team work

45 hours

16.

Other forms of activities

16.1.

Project tasks

15 hours

16.2.

Independent tasks

15 hours

16.3.

Homework

75 hours

17.

Grading method

17.1.

Tests

10 points

17.2.

Seminar work / project (presentation: written and oral)

15 points

17.3.

Activities and learning

10 points

17.4.

Final exam

70 points

18.

Grading criteria (points / grade)

up to 50 points

5 (five) (F)

from 51 to 60 points

6 (six) (E)

from 61 to 70 points

7 (seven) (D)

from 71 to 80 points

8 (eight) (C)

from 81 to 90 points

9 (nine) (B)

from 91 to 100 points

10 (ten) (A)

19.

Condition for signature and taking final exam

реализирани активности 15.1 и 15.2

20.

Language of instruction

македонски и англиски

21.

Quality assurance method

механизам на интерна евалуација и анкети

22.

Literature

22.1.

Mandatory literature

22.2.

Additional literature