GIAC Certified Forensic Analyst (GCFA)

Gain the knowledge and skills to conduct formal incident investigations and handle advanced incident-handling scenarios with GIAC Certified Forensic Analyst (GCFA) certification.

16 hours 0 Enrolled No ratings yet Intermediate

About The Course

The GCFA certifies that candidates have the knowledge, skills, and ability to conduct formal incident investigations and handle advanced incident handling scenarios, including internal and external data breach intrusions, advanced persistent threats, anti-forensic techniques used by attackers, and complex digital forensic cases. The GCFA certification focuses on core skills required to collect and analyze data computer systems.

  • Advanced Incident Response and Digital Forensics
  • Memory Forensics, Timeline Analysis, and Anti-Forensics Detection
  • Threat Hunting and APT Intrusion Incident Response

Course Objectives

  • Analyzing Volatile Malicious Event Artifacts
  • Analyzing Volatile Windows Event Artifacts
  • Enterprise Environment Incident Response
  • File System Timeline Artifact Analysis
  • Identification of Malicious System and User Activity
  • Identification of Normal System and User Activity
  • Introduction to File System Timeline Forensics
  • Introduction to Memory Forensics
  • NTFS Artifact Analysis
  • Windows Artifact Analysis


This an advanced incident response and threat hunting course that focuses on detecting and responding to advanced persistent threats and organized crime threat groups. The course does not cover the basics of incident response policies or digital forensics.

It is recommended that you should have a background in Forensics prior to attending this course.

Show More
Free acess this course

What's included

  • 16 Hours Training Course
  • Certificate
  • 6 Modules
  • 24/7 Support


  • Incident Response Team Members
  • Threat Hunters
  • SOC Analysts
  • Experienced Digital Forensic Analysts
  • Information Security Professionals
  • Federal Agents and Law Enforcement Professionals
  • Red Team Members, Penetration Testers, and Exploit Developers
  • GCFE and GCIH Cert Holders


4.8Instructor Rating
View Details