GIAC Network Forensic Analyst
What is GNFA certification?
The GIAC Network Forensic Analyst (GNFA) certification validates a practitioner’s ability to perform examinations employing network forensic artifact analysis. GNFA certification holders have demonstrated an understanding of the fundamentals of network forensics, normal and abnormal conditions for common network protocols, processes and tools used to examine device and system logs, and wireless communication and encrypted protocols.
Why should you attend?
The GIAC Network Forensic enables you to learn:
- Network architecture, network protocols, and network protocol reverse engineering
- Encryption and encoding, NetFlow analysis and attack visualization, security event & incident logging
- Network analysis tools and usage, wireless network analysis, & open source network security proxies
Who should attend?
- Anyone interested in computer network intrusions and investigations who has a solid background in computer forensics, information systems, and information security
- Incident response team members
- Forensicators
- Threat hunters
- Law enforcement officers, federal agents, and detectives
- SOC personnel
- Information security practitioners and managers
- Network defenders and engineers
- Information technology professionals
Learning Objectivies:
The topic areas for each exam part following:
- Common Network Protocols
- Encryption and Encoding
- NetFlow Analysis and Attack Visualization
- Network Analysis Tool and Usage
- Network Architecture
- Network Protocol Reverse Engineering.
- Open Source Network Security Proxies
- Security Event and Incident Logging
- Wireless Network Analysis.
Prerequisites
A fundamental understanding of Microsoft, Linux
Exam Format
- 1 proctored exam
- 50 questions
- Time limit of 2 hours
- Minimum Passing Score of 70%
General Information
- Training is available in a variety of modalities including live conference training, online, and self study.
- Practical work experience can help ensure that you have mastered the skills necessary for certification
- College level courses or study through another program may meet the needs for mastery.
- The procedure to contest exam results can be found at https://www.giac.org/about/procedures/grievance.