Leave your message to get our quick response
edoxi automated message icon
Select a Location
flag
Select Location
request a call back icon
Request a Callback

Please Fill to Request A Call back

Contact Number Icon
+44 7497 303637
Home
London
Emerging Technology
Cyber Security
CHFI

Computer Hacking Forensic Investigator (CHFI) Course in London

A professional CHFI expert analysing digital forensic data on multiple screens in a high-tech cybersecurity lab.
Edoxi’s 35-Hour CHFI Course in London prepares you to learn skills required for digital forensics, incident response and investigations of cyber crimes. Gain experience to solve industry-related challenges and the use of relevant tools as part of a live forensic scenario & laboratory exercise. Develop skills in evidence handling, forensic analysis and investigation procedures. Enrol Now!
Course Duration
35 Hours
Corporate Days
5 Days
Learners Enrolled
50+
Modules
15
Download Brochure download-icon

Please Fill to Download Brochure

Request Course Infodownload-icon

Please Fill to Request A Call back

star-rating-icon1
star-rating-icon2
star-rating-icon3
Course Rating
4.9
star-rating-4.9
Mode of Delivery
Online
Classroom
Certification by
  • -accreditation-logo

What Do You Learn from Edoxi's CHFI Training

Forensics Tools and Techniques
Become proficient with the methodologies and tools of digital forensics through a combination of structured investigative procedures and acquisition of digital evidence. Learn to use industry-standard forensic tools during professional investigations.
Digital Evidence Handling
Learn how to handle collected digital evidence using appropriate evidence collection methods, chain of custody protocols, and preservation techniques. This ensures that the data remains intact and can be presented as legal evidence in court.
Cyber Incident Response and Cybercrime Investigation
Develop skills for responding to information security incidents and identifying potential methods of attack while systematically performing forensic examinations.
Malware and Network Forensics
Learn how to analyse malware, review network traffic patterns through systems, and analyse system artefacts for tracing the origin of an attack. Learn to understand how the attack occurred.
Cloud, Mobile and IoT Forensics
Explore modern forensic processes for collecting and analysing digital evidence located in cloud-based storage systems, on mobile devices, and in Internet of Things (IoT) environments.
Anti-Forensics and Detection Techniques
Get exposed to techniques that attackers typically use to conceal their activities, alter or remove evidence left behind. Gain the ability to evade and defeat the various types of forensic analysis.

About Our CHFI Course in London

Edoxi’s 35-hour Computer Hacking Forensic Investigator - CHFI course in London guides learners to apply computer forensic methodologies in cybercrime investigation through gathering and analysing digitally acquired evidence.

As a leading corporate training organisation, Edoxi’s CHFI course in London targets cybersecurity professionals and law enforcement officers conducting investigations for computer evidence using digital forensics and freshers who dream of becoming computer forensic investigators.

Edoxi’s CHFI course includes hands-on laboratory exercises with a variety of forensic tools such as Autopsy, FTK Imager, and Redline. Get the exclusive opportunity to investigate real-world scenarios using Windows, Linux, and Macintosh operating systems, and learn to recover data, forensically image hard drives, and analyse malware for investigation.

The CHFI course has applications across industries like:

  • Cybersecurity: Analyse threats, improve incident response
  • Law Enforcement: Investigate cybercrime, analyse digital evidence
  • Legal Compliance: Ensure GDPR/CCPA compliance, investigate violations
  • Digital Forensics: Recover forensic evidence, detect malware
  • IT Security: Investigate breaches, strengthen security policies
  • Corporate Risk Management: Identify cyber risks, apply mitigation strategies

This course also provides the necessary tools and understanding of how to successfully pass the EC-Council CHFI Certified Hacking Forensics Investigator exam and provides you with a mock test to assist with gauging your readiness for the test and enhancing your success in the examination.

The image below outlines the CHFI certification course, featuring a curriculum focused on malware, cloud, and mobile forensics, alongside an infographic detailing the six-stage Forensic Investigation Process: from crime scene documentation and evidence preservation to data examination and final reporting.

Forensic investigation processes

After course completion, participants can execute proper forensic examinations, create effective court-admissible reports, and be able to testify in court. Obtaining this skillset enhances career opportunities as a valuable asset within cybersecurity teams within law enforcement agencies or corporate security divisions with regard to digital forensics expertise.

The EC-Council Exam Details 

The details of the official EC_Council Exam are given:

Exam Criteria Details
Exam Code 312-49
Exam Name Computer Hacking Forensic Investigator
Duration 4 hours
Passing Score 60%
Certification Validity 3 years
Recertification Retake the exam before expiration
Exam Administration Authority EC-Council

The course fee and schedules change according to scheduling options and customisation add-ons. Contact our team now to know more about the CHFI course in London.

Key Features of Edoxi's CHFI Training

Professional Forensic Tool Training

Our CHFI course in London helps to gain hands-on experience with industry-standard forensic tools, including Autopsy, FTK Imager, and Redline for professional investigations.

Multi-Platform Forensic Analysis

We train your team to conduct forensic examinations across Windows, Linux, and Mac operating systems to expand your investigation capabilities.

Data Recovery and Analysis Labs

Our data recovery and analysis labs help you to practice recovering deleted data, analysing file systems, and extracting crucial digital evidence using specialised techniques.

Hex Analysis and Data Conversion

Master hex editing with the HxD tool and perform advanced binary, decimal, and hexadecimal conversions for data examination.

Evidence Documentation Training

Learn to properly document findings, maintain the chain of custody, and prepare court-admissible forensic reports.

CHFI Mock Test

Our curated CHFI course encourages teams to take the Computer Hacking Forensic Investigator (CHFI) mock test to ensure a smooth and confident exam experience.

Who Can Join Our CHFI Course in Dubai?

Cybersecurity Professionals

IT security specialists and analysts who want to expand their skills into digital forensics and evidence collection.

Law Enforcement Personnel

Police officers, detectives, and investigators involved in handling digital evidence and investigating cybercrimes.

IT Security Analysts

Network and security professionals aiming to strengthen incident response through forensic investigation skills.

Legal Professionals

Lawyers, legal consultants, and paralegals who work on cybercrime cases and need knowledge of digital evidence procedures.

IT Auditors and Compliance Officers

Professionals responsible for regulatory compliance and internal security breach investigations.

Corporate Security Teams

Enterprise security professionals looking to develop in-house capabilities for incident response and cyber investigations.

Request Course Information

    CHFI Course Modules

    Module 1: Computer Forensics in Today’s World

    • Chapter 1.1: Introduction to Computer Forensics

      • Lesson 1.1.1: Fundamentals of Computer Forensics
      • Lesson 1.1.2: Scope of Computer Forensics
      • Lesson 1.1.3: Role of Various Processes and Technologies in Computer Forensics

    • Chapter 1.2: Cybercrimes and Investigation Procedures

      • Lesson 1.2.1: Types of Cybercrimes
      • Lesson 1.2.2: Cybercrime Investigation
      • Lesson 1.2.3: Cyber Attribution

    • Chapter 1.3: Digital Evidence and eDiscovery

      • Lesson 1.3.1: Types and Role of Digital Evidence
      • Lesson 1.3.2: Sources of Potential Evidence
      • Lesson 1.3.3: Federal Rules of Evidence (United States)

    • Chapter 1.4: Forensic Readiness and Incident Response

      • Lesson 1.4.1: Forensic Readiness and Business Continuity
      • Lesson 1.4.2: Incident Response Process Flow

    • Chapter 1.5: Challenges and Responsibilities in Computer Forensics

      • Lesson 1.5.1: Roles and Responsibilities of a Forensic Investigator
      • Lesson 1.5.2: Challenges Faced in Investigating Cybercrimes
      • Lesson 1.5.3: Code of Ethics in Computer Forensics

    • Chapter 1.6: Standards and Legal Compliance in Computer Forensics

      • Lesson 1.6.1: Standards and Best Practices Related to Computer Forensics
      • Lesson 1.6.2: ISO Standards in Computer Forensics
      • Lesson 1.6.3: Computer Forensics and Legal Compliance

    • Chapter 1.7: Emerging Trends in Computer Forensics

      • Lesson 1.7.1: Role of Artificial Intelligence in Computer Forensics
      • Lesson 1.7.2: Forensics Automation and Orchestration
    Module 2: Computer Forensics Investigation Process

    • Chapter 2.1: Overview of the Forensic Investigation Process

      • Lesson 2.1.1: Importance of the Forensic Investigation Process
      • Lesson 2.1.2: Phases Involved in the Computer Forensics Investigation Process

    • Chapter 2.2: First Response in Computer Forensics

      • Lesson 2.2.1: First Response and Its Significance
      • Lesson 2.2.2: Roles of a First Responder
      • Lesson 2.2.3: First Response in Different Situations

    • Chapter 2.3: Pre-Investigation Phase

      • Lesson 2.3.1: Setting Up a Computer Forensics Lab
      • Lesson 2.3.2: Understanding Hardware and Software Requirements of a Forensics Lab
      • Lesson 2.3.3: Building Security Content for Forensic Investigations

    • Chapter 2.4: Investigation Phase

      • Lesson 2.4.1: Documenting the Electronic Crime Scene
      • Lesson 2.4.2: Search and Seizure Procedures
      • Lesson 2.4.3: Evidence Preservation and Data Acquisition
      • Lesson 2.4.4: Case Analysis and Forensic Examination

    • Chapter 2.5: Post-Investigation Phase

      • Lesson 2.5.1: Reporting Findings and Documentation
      • Lesson 2.5.2: Testifying as an Expert Witness
    Module 3: Understanding Hard Disks and File Systems

    • Chapter 3.1: Fundamentals of Storage Devices

      • Lesson 3.1.1: Hard Disk Drive (HDD) and Solid-State Drive (SSD)
      • Lesson 3.1.2: Disk Interfaces and Their Characteristics

    • Chapter 3.2: Disk Structures and Boot Process

      • Lesson 3.2.1: Logical Structure of Disks
      • Lesson 3.2.2: Windows Boot Process
      • Lesson 3.2.3: macOS Boot Process
      • Lesson 3.2.4: Linux Boot Process

    • Chapter 3.3: File Systems of Different Operating Systems

      • Lesson 3.3.1: Windows File Systems (FAT, NTFS)
      • Lesson 3.3.2: Linux File Systems (EXT, XFS, Btrfs)
      • Lesson 3.3.3: macOS File Systems (HFS+, APFS)

    • Chapter 3.4: File System Analysis

      • Lesson 3.4.1: File System Timeline Creation and Analysis
      • Lesson 3.4.2: File System Recovery Techniques

    • Chapter 3.5: Storage and Encoding Standards

      • Lesson 3.5.1: RAID Storage Systems
      • Lesson 3.5.2: Differences Between NAS and SAN
      • Lesson 3.5.3: Character Encoding Standards

    • Chapter 3.6: Analysing File Formats

      • Lesson 3.6.1: Introduction to Hex Editors
      • Lesson 3.6.2: PDF File Analysis
      • Lesson 3.6.3: Word File Analysis
      • Lesson 3.6.4: PowerPoint File Analysis
      • Lesson 3.6.5: Excel File Analysis
    Module 4: Data Acquisition and Duplication

    • Chapter 4.1: Introduction to Data Acquisition

      • Lesson 4.1.1: Importance of Data Acquisition in Forensics
      • Lesson 4.1.2: Live Acquisition vs. Dead Acquisition
      • Lesson 4.1.3: Data Acquisition Formats

    • Chapter 4.2: eDiscovery and Collection Methodologies

      • Lesson 4.2.1: Overview of eDiscovery
      • Lesson 4.2.2: eDiscovery Collection Methodologies
      • Lesson 4.2.3: eDiscovery Tools

    • Chapter 4.3: Data Acquisition Methodology

      • Lesson 4.3.1: Determining the Data Acquisition Method
      • Lesson 4.3.2: Selecting the Right Data Acquisition Tool
      • Lesson 4.3.3: Sanitising Target Media

    • Chapter 4.4: Data Acquisition Process

      • Lesson 4.4.1: Acquiring Volatile Data
      • Lesson 4.4.2: Enabling Write Protection on Evidence Media
      • Lesson 4.4.3: Acquiring Non-Volatile Data

    • Chapter 4.5: Validating and Preparing Data for Examination

      • Lesson 4.5.1: Planning for Contingencies in Data Acquisition
      • Lesson 4.5.2: Validating Data Acquisition
      • Lesson 4.5.3: Preparing an Image for Examination

    • Chapter 4.6: Digital Forensic Imaging Tools

      • Lesson 4.6.1: Overview of Digital Forensic Imaging Tools
      • Lesson 4.6.2: Best Practices for Data Duplication
    Module 5: Defeating Anti-Forensics Techniques

    • Chapter 5.1: Understanding Anti-Forensics

      • Lesson 5.1.1: Challenges to Forensics from Anti-Forensics
      • Lesson 5.1.2: Common Anti-Forensics Techniques

    • Chapter 5.2: Data Deletion and Recovery

      • Lesson 5.2.1: Data/File Deletion Techniques
      • Lesson 5.2.2: Recycle Bin Forensics in Windows
      • Lesson 5.2.3: File Carving Techniques

    • Chapter 5.3: Partition and Password Recovery

      • Lesson 5.3.1: Recovering Deleted Partitions and Their Contents
      • Lesson 5.3.2: Password Cracking Tools and Techniques
      • Lesson 5.3.3: Bypassing Windows User Passwords

    • Chapter 5.4: Hidden Data and Obfuscation Techniques

      • Lesson 5.4.1: Steganography and Hidden Data in File System Structures
      • Lesson 5.4.2: Alternate Data Streams (ADS) and Their Detection
      • Lesson 5.4.3: Trail Obfuscation Techniques

    • Chapter 5.5: Advanced Anti-Forensics Techniques

      • Lesson 5.5.1: Overwriting Data and Metadata
      • Lesson 5.5.2: Encryption and Its Impact on Forensics
      • Lesson 5.5.3: Program Packers and Footprint Minimisation Techniques
    Module 6: Windows Forensics

    • Chapter 6.1: Windows Forensics Methodology

      • Lesson 6.1.1: Understanding Windows Forensics
      • Lesson 6.1.2: Windows Artefacts and Evidence Collection

    • Chapter 6.2: Collecting Volatile and Non-Volatile Information

      • Lesson 6.2.1: Collecting Volatile Information from Windows Systems
      • Lesson 6.2.2: Collecting Non-Volatile Information from Windows Systems
      • Lesson 6.2.3: Collecting Windows Domain Information

    • Chapter 6.3: Windows Memory and Registry Analysis

      • Lesson 6.3.1: Windows Memory Analysis Techniques
      • Lesson 6.3.2: Memory Forensics and Its Importance
      • Lesson 6.3.3: Windows Registry Analysis and Artefact Extraction

    • Chapter 6.4: Windows File and Metadata Analysis

      • Lesson 6.4.1: Examining Compressed Files in Windows
      • Lesson 6.4.2: Windows ShellBags and User Activity Tracking
      • Lesson 6.4.3: Analysing LNK Files and Jump Lists

    • Chapter 6.5: Web Browser and Application Forensics

      • Lesson 6.5.1: Web Browser Forensics and Evidence Collection
      • Lesson 6.5.2: Carving SQLite Database Files from Browsers
      • Lesson 6.5.3: Electron Application Forensics

    • Chapter 6.6: Windows Event Logs and Log Analysis

      • Lesson 6.6.1: Windows Event Logs and Their Forensic Importance
      • Lesson 6.6.2: Investigating Windows 11 Event Logs
      • Lesson 6.6.3: Windows Forensics Tools
    Module 7: Linux and Mac Forensics

    • Chapter 7.1: Linux Forensics Methodology

      • Lesson 7.1.1: Understanding Linux Forensics
      • Lesson 7.1.2: Collecting Volatile Information in Linux
      • Lesson 7.1.3: Collecting Non-Volatile Information in Linux

    • Chapter 7.2: Linux Memory and File System Forensics

      • Lesson 7.2.1: Linux Memory Forensics Techniques
      • Lesson 7.2.2: Linux File System Analysis
      • Lesson 7.2.3: Investigating Linux Log Files

    • Chapter 7.3: Mac Forensics Methodology

      • Lesson 7.3.1: Understanding Mac Forensics
      • Lesson 7.3.2: Collecting Volatile Information in Mac Systems
      • Lesson 7.3.3: Collecting Non-Volatile Information in Mac Systems

    • Chapter 7.4: Mac Memory and File System Forensics

      • Lesson 7.4.1: Mac Memory Forensics and Artefact Extraction
      • Lesson 7.4.2: Mac File System Analysis (HFS+, APFS)
      • Lesson 7.4.3: Parsing Metadata on Spotlight

    • Chapter 7.5: Mac Forensic Tools and Log Analysis

      • Lesson 7.5.1: Investigating Mac Log Files
      • Lesson 7.5.2: Mac Directory Structures and Data Recovery
      • Lesson 7.5.3: Mac Forensics Tools
    Module 8: Network Forensics

    • Chapter 8.1: Fundamentals of Network Forensics

      • Lesson 8.1.1: Understanding Network Forensics
      • Lesson 8.1.2: Types of Network-Based Evidence
      • Lesson 8.1.3: Postmortem and Real-Time Network Analysis

    • Chapter 8.2: Event Correlation and Indicators of Compromise (IoCs)

      • Lesson 8.2.1: Event Correlation Techniques
      • Lesson 8.2.2: Types of Event Correlation
      • Lesson 8.2.3: Identifying Indicators of Compromise (IoCs) from Network Logs

    • Chapter 8.3: Investigating Network Traffic

      • Lesson 8.3.1: Network Traffic Analysis Methods
      • Lesson 8.3.2: Tools for Investigating Network Traffic
      • Lesson 8.3.3: Security Information and Event Management (SIEM) Solutions

    • Chapter 8.4: Log Analysis for Network Forensics

      • Lesson 8.4.1: Analysing Firewall Logs
      • Lesson 8.4.2: Analysing IDS/IPS Logs and Honeypot Data
      • Lesson 8.4.3: Analysing Router, DHCP, VPN, and DNS Server Logs

    • Chapter 8.5: Wireless Network Forensics

      • Lesson 8.5.1: Types of Wireless Evidence
      • Lesson 8.5.2: Wireless Network Forensics Process
      • Lesson 8.5.3: Detecting Rogue Access Points and Wi-Fi Attacks

    • Chapter 8.6: Investigating Network Attacks

      • Lesson 8.6.1: Identifying and Investigating Network Attacks
      • Lesson 8.6.2: Analysing Wireless Packet Captures
      • Lesson 8.6.3: Tools for Investigating Wireless Network Traffic
    Module 9: Malware Forensics

    • Chapter 9.1: Understanding Malware and Its Impact

      • Lesson 9.1.1: Introduction to Malware and Its Threats
      • Lesson 9.1.2: Different Ways Malware Enters a System
      • Lesson 9.1.3: Components of Malware

    • Chapter 9.2: Malware Forensic Analysis

      • Lesson 9.2.1: Malware Forensic Artefacts and Evidence Collection
      • Lesson 9.2.2: Setting Up a Controlled Malware Analysis Lab
      • Lesson 9.2.3: Malware Analysis Tools

    • Chapter 9.3: Static Malware Analysis

      • Lesson 9.3.1: Understanding Static Malware Analysis
      • Lesson 9.3.2: Analysing Suspicious Documents (PDF, Microsoft Office)
      • Lesson 9.3.3: Extracting and Examining Malware Code

    • Chapter 9.4: Behavioural Malware Analysis

      • Lesson 9.4.1: System Behaviour Analysis of Malware
      • Lesson 9.4.2: Network Behaviour Analysis of Malware
      • Lesson 9.4.3: Investigating Malware Persistence Mechanisms

    • Chapter 9.5: Ransomware Analysis

      • Lesson 9.5.1: Introduction to Ransomware Forensics
      • Lesson 9.5.2: Analysing BlackCat (ALPHV) Ransomware
      • Lesson 9.5.3: Ransomware Attack Mitigation and Recovery
    Module 10: Investigating Web Attacks

    • Chapter 10.1: Introduction to Web Application Forensics

      • Lesson 10.1.1: Understanding Web Application Forensics
      • Lesson 10.1.2: Indicators of a Web Attack
      • Lesson 10.1.3: OWASP Top 10 Application Security Risks – 2021

    • Chapter 10.2: Web Server Log Analysis

      • Lesson 10.2.1: IIS Web Server Architecture and Log Analysis
      • Lesson 10.2.2: Apache Web Server Logs and Their Importance
      • Lesson 10.2.3: Tools for Analysing IIS and Apache Logs

    • Chapter 10.3: Investigating Web-Based Attacks

      • Lesson 10.3.1: Investigating Cross-Site Scripting (XSS) Attacks
      • Lesson 10.3.2: Investigating SQL Injection Attacks
      • Lesson 10.3.3: Investigating Path/Directory Traversal Attacks

    • Chapter 10.4: Advanced Web Attack Investigations

      • Lesson 10.4.1: Investigating Command Injection Attacks
      • Lesson 10.4.2: Investigating XML External Entity (XXE) Attacks
      • Lesson 10.4.3: Investigating Brute-Force Attacks
    Module 11: Dark Web Forensics

    • Chapter 11.1: Introduction to the Dark Web

      • Lesson 11.1.1: Understanding the Dark Web and Its Structure
      • Lesson 11.1.2: Differences Between the Surface Web, Deep Web, and Dark Web
      • Lesson 11.1.3: Challenges in Investigating Dark Web Activities

    • Chapter 11.2: Tor Browser and Anonymity

      • Lesson 11.2.1: Working with the Tor Browser
      • Lesson 11.2.2: Identifying Traces of Tor Browser Usage
      • Lesson 11.2.3: Investigating Tor Network Traffic

    • Chapter 11.3: Dark Web Forensic Techniques

      • Lesson 11.3.1: Identifying Dark Web Artefacts in Digital Evidence
      • Lesson 11.3.2: Analysing Dark Web-Related Memory Dumps
      • Lesson 11.3.3: Forensic Analysis of Memory Dumps to Examine Email Artefacts
    Module 12: Cloud Forensics

    • Chapter 12.1: Introduction to Cloud Computing and Forensics

      • Lesson 12.1.1: Understanding Cloud Computing and Its Security Challenges
      • Lesson 12.1.2: Uses and Importance of Cloud Forensics
      • Lesson 12.1.3: Separation of Responsibilities in the Cloud

    • Chapter 12.2: Cloud Security and Compliance

      • Lesson 12.2.1: OWASP Top 10 Cloud Security Risks
      • Lesson 12.2.2: Cloud Forensics Challenges and Legal Considerations
      • Lesson 12.2.3: Cloud Data Storage and Encryption Methods

    • Chapter 12.3: Amazon Web Services (AWS) Forensics

      • Lesson 12.3.1: AWS Fundamentals and Data Storage
      • Lesson 12.3.2: Logs in AWS and Their Forensic Importance
      • Lesson 12.3.3: Forensic Acquisition of Amazon EC2 Instances

    • Chapter 12.4: Microsoft Azure Forensics

      • Lesson 12.4.1: Microsoft Azure Fundamentals
      • Lesson 12.4.2: Logs and Data Storage in Azure
      • Lesson 12.4.3: Forensic Acquisition of VMs in Azure

    • Chapter 12.5: Google Cloud Platform (GCP) Forensics

      • Lesson 12.5.1: Google Cloud Fundamentals
      • Lesson 12.5.2: Logs and Data Storage in Google Cloud
      • Lesson 12.5.3: Forensic Acquisition of Persistent Disk Volumes in GCP

    • Chapter 12.6: Investigating Cloud Security Incidents

      • Lesson 12.6.1: Investigating Google Cloud Security Incidents
      • Lesson 12.6.2: Investigating Google Cloud Container Security Incidents
      • Lesson 12.6.3: Investigating Google Cloud VM-Based Security Incidents
    Module 13: Email and Social Media Forensics

    • Chapter 13.1: Introduction to Email Forensics

      • Lesson 13.1.1: Understanding Email Communication and Its Components
      • Lesson 13.1.2: Parts of an Email Message and Their Forensic Relevance
      • Lesson 13.1.3: Common Email-Based Threats and Crimes

    • Chapter 13.2: Investigating Email Crimes

      • Lesson 13.2.1: Steps to Investigate Email Crimes
      • Lesson 13.2.2: Analysing Email Headers for Forensic Evidence
      • Lesson 13.2.3: Tracing Email Senders and Identifying Spoofing

    • Chapter 13.3: Legal Aspects of Email Crimes

      • Lesson 13.3.1: U.S. Laws Against Email Crime
      • Lesson 13.3.2: International Email Crime Regulations
      • Lesson 13.3.3: Compliance Standards for Email Investigations

    • Chapter 13.4: Social Media Forensics

      • Lesson 13.4.1: Understanding Social Media Crimes and Digital Footprints
      • Lesson 13.4.2: Extracting and Analysing Social Media Artefacts
      • Lesson 13.4.3: Tracking Social Media User Activities

    • Chapter 13.5: Social Network Analysis and Investigation Tools

      • Lesson 13.5.1: Constructing and Analysing Social Network Graphs
      • Lesson 13.5.2: Identifying Suspicious Activities on Social Media Platforms
      • Lesson 13.5.3: Social Media Forensics Tools
    Module 14: Mobile Forensics

    • Chapter 14.1: Introduction to Mobile Forensics

      • Lesson 14.1.1: Understanding Mobile Device Forensics
      • Lesson 14.1.2: OWASP Top 10 Mobile Security Risks
      • Lesson 14.1.3: Challenges in Mobile Forensic Investigations

    • Chapter 14.2: Mobile Device Architecture and Boot Process

      • Lesson 14.2.1: Android OS Architecture and Boot Process
      • Lesson 14.2.2: iOS Architecture and Boot Process
      • Lesson 14.2.3: Mobile File System Structure

    • Chapter 14.3: Mobile Forensics Process

      • Lesson 14.3.1: Mobile Device Acquisition Techniques
      • Lesson 14.3.2: Investigating Cellular Network Data
      • Lesson 14.3.3: Phone Locks, Rooting, and Jailbreaking of Mobile Devices

    • Chapter 14.4: Data Acquisition Techniques

      • Lesson 14.4.1: Logical Acquisition on Mobile Devices
      • Lesson 14.4.2: Physical Acquisition of Mobile Devices
      • Lesson 14.4.3: Cloud Data Acquisition on Android and iOS

    • Chapter 14.5: Android and iOS Forensic Analysis

      • Lesson 14.5.1: Android Forensics and Data Recovery
      • Lesson 14.5.2: iOS Forensics and Analysing iOS Keychains
      • Lesson 14.5.3: Collecting and Analysing WhatsApp and Safari Artefacts

    • Chapter 14.6: Advanced Mobile Forensics Techniques

      • Lesson 14.6.1: JTAG Forensics and Flasher Boxes
      • Lesson 14.6.2: Static and Dynamic Analysis of APK Files
      • Lesson 14.6.3: Mobile Forensics Tools and Best Practices
    Module 15: IoT Forensics

    • Chapter 15.1: Introduction to IoT Forensics

      • Lesson 15.1.1: Understanding IoT and Its Architecture
      • Lesson 15.1.2: Security Challenges in IoT Devices
      • Lesson 15.1.3: OWASP Top 10 IoT Security Threats

    • Chapter 15.2: IoT Forensics Process

      • Lesson 15.2.1: IoT Evidence Collection and Preservation
      • Lesson 15.2.2: Challenges in IoT Forensics
      • Lesson 15.2.3: IoT Data Acquisition Techniques

    • Chapter 15.3: Investigating IoT Devices

      • Lesson 15.3.1: Wearable IoT Device Forensics (Smartwatches)
      • Lesson 15.3.2: IoT Device Forensics: Smart Speakers (Amazon Echo)
      • Lesson 15.3.3: Extracting and Analysing Data from Drones/UAVs

    • Chapter 15.4: Hardware-Level IoT Forensics

      • Lesson 15.4.1: JTAG and Chip-Off Forensics Techniques
      • Lesson 15.4.2: Memory Dump Analysis of IoT Devices
      • Lesson 15.4.3: Reverse Engineering IoT Firmware

    • Chapter 15.5: IoT Forensic Tools and Best Practices

      • Lesson 15.5.1: Tools for Investigating IoT Devices
      • Lesson 15.5.2: IoT Forensics Frameworks and Methodologies
      • Lesson 15.5.3: Legal and Compliance Issues in IoT Investigations

    Download CHFI Course Brochure

    Major Lab Activities and Practical Sessions in Our CHFI Course in London

    Edoxi has created an overall CHFI course that teaches teams to apply digital forensic techniques through hands-on guided activities that simulate real-life investigations. The following hands-on activities are completed in our CHFI course in London:

    Forensic Analysis of Windows/Linux/Mac Systems

    Your team get to perform forensic analyses of multiple operating systems (Windows, Linux, and Mac) utilising digital forensic techniques that can be used to extract, preserve, and analyse digital evidence from all three types of computer systems.

    Hexadecimal Formatting of Data

    Master the skills to use hexadecimal values to perform low-level analysis, edit raw data, and recover deleted or corrupted data by using HxD (or any other hex editor).

    Converting Values among Binary/Decimal/Hexadecimal Systems

    Develop accurate skills in converting binary, decimal, and hexadecimal numbers to easily interpret raw data when performing digital forensic examinations.

    Forensic Imaging and Data Recovery

    We guide you to create forensic images of disks or disk images and recover important data from a compromised storage device or disk image while still preserving the integrity of the evidence and reliability of the investigation.

    CHFI Course Outcome and Career Opportunities in London

    Edoxi’s CHFI course in London equips you with practical technical skills and industry-relevant knowledge in cyber forensics. Here are some of the key outcomes:

    Course Outcome Image
    Your team developed an excellent background in digital forensic investigations and principles of digital forensics, along with methods of digital forensic investigations.
    Increased ability to locate, gather, and retain digital evidence through proper forensic investigative processes.
    Analysed cyberattacks and related malware, security circumvention, and other forensic tools, including network forensics tools and methodologies.
    Gained high ability to analyse network activity, including network forensic investigations and incident response.
    Acquired the skills to perform forensic analysis of computer disk drives, system memory, and system log files to obtain valuable evidence of a computer crime and cyber threats.
    Improved skill in documenting evidence and creating a report detailing the results of the forensic investigation.

    Career Opportunities After Our CHFI Course in London

    • Computer Hacking Forensic Investigator
    • Digital Forensics Analyst
    • Cybersecurity Analyst
    • Incident Response Analyst
    • Information Security Analyst
    • Cybercrime Investigator
    • Security Operations Centre (SOC) Analyst
    • Malware Analyst
    • IT Security Specialist
    • Cybersecurity Consultant

    Top Companies Hiring CHFI Professionals in London

    • Darktrace
    • BAE Systems Applied Intelligence
    • NCC Group
    • Deloitte
    • PwC
    • SailPoint
    • Fortinet
    • ITC Secure
    • Tessian
    • Netcraft

    CHFI Training Options

    Classroom Training

    • 35-hours of live classroom training

    • Instructor-led CHFI training

    • EC-Council iLab hands-on practice

    • Small batches (3–5 participants)

    • Core digital forensics coverage

    • Real-time trainer support

    Live Online Training

    • 35-hour live virtual CHFI sessions

    • Cloud-based lab access

    • Interactive tool demonstrations

    • Flexible schedules

    • Session recordings

    Corporate Training

    • 5-day customised CHFI programme

    • On-site/online/hybrid delivery

    • Fly Me A Trainer option

    • End-to-end logistics support

    • Food and refreshments included

    Do You Want a Customised Training for CHFI?

    Get expert assistance in getting your CHFI Course customised!

    How to Get a CHFI Course Certification in London?

    Here’s a four-step guide to becoming a certified CHFI professional.

    • Join Edoxi’s CHFI (Computer Hacking Forensic Investigator) Certification Course in London.
    • Attend our expert-led CHFI training sessions
    • Complete hands-on digital forensics practical labs
    • Earn the Edoxi CHFI & EC-Council Certification
    • slider

    Do You Want to be a Certified Professional in CHFI?

    Join Edoxi’s CHFI Course

    Why Choose Edoxi for CHFI Training in London?

    The major reasons to choose Edoxi for your CHFI training in London:

    Top Corporate Portfolio in Cybersecurity Training

    Edoxi has offered cybersecurity training for government entities and leading companies in London.

    Substantial Exam Cost Savings

    Enjoy discounted CHFI exam vouchers and special rates for your practical certification exam.

    Cloud-Based Learning Infrastructure

    Practice in advanced cloud labs with real-world scenarios, vulnerabilities, and pre-configured security tools.

    Comprehensive Learning Support

    Follow EC-Council's official curriculum, practical exercises, and expert instruction.

    Proven Track Record

    Trained over 10,000 professionals with a consistent record of success in certifications and career advancement.

    Hands-On Cyber Forensics Labs

    Your team can gain practical experience through simulated cybercrime investigations, forensic analysis exercises, and real-world case studies designed to build digital forensics skills.

    students-image

    Edoxi is Recommended by 95% of our Students

    Meet Our Mentor

    Our mentors are leaders and experts in their fields. They can challenge and guide you on your road to success!

    mentor-image

    Maria Mehwish

    Maria Mehwish is a forward-thinking and knowledgeable information security leader with a strong background in building, updating, and maintaining digital protections for various organisations. As a certified CEH, CCSP, CCT, and CISSP Trainer, Maria has a proven track record of delivering innovative and immersive coursework, enhancing learning experiences for cyber threats, ethical hacking, security policy, DevSecOps, and cloud security. With excellent verbal and written communication skills, she is also adept at troubleshooting problems and building successful solutions.

    Maria is a self-motivated individual with a strong sense of personal responsibility, capable of managing projects from start to finish. Her expertise in Amazon Web Services, Java/Go/Python/C++, DevSecOps, computer security, Linux, penetration testing, and risk analysis, among others, makes her a valuable asset to any organisation. Maria, a British national, is a native English speaker and has intermediate proficiency in Urdu.

    Locations Where Edoxi Offers CHFI Course

    Here is the list of other major locations where Edoxi offers CHFI Course

    FAQ

    What is the CHFI certification, and why is it important?
    The CHFI certification from EC-Council focuses on digital forensics and cybercrime investigation techniques. It validates skills in identifying, collecting, and analysing digital evidence for cybersecurity investigations.
    Who should enrol in the CHFI course in London?
    Our CHFI course in London is ideal for cybersecurity professionals, IT administrators, law enforcement officers, and digital forensic analysts. Anyone interested in cybercrime investigation and digital evidence analysis can also benefit from it.
    What are the prerequisites for your CHFI training in London?
    Basic knowledge of networking, cybersecurity, or IT systems is recommended. However, professionals with a strong interest in digital forensics can also enrol.
    What topics are covered in the CHFI course in London?
    Our CHFI course in London covers digital forensics investigation, evidence acquisition, malware analysis, network forensics, and incident response. It also includes forensic tools, legal considerations, and documentation procedures.
    Is the CHFI course suitable for beginners in cybersecurity?
    Yes, our CHFI course in London provides structured learning that helps beginners understand the fundamentals of cyber forensics. It gradually introduces advanced investigation techniques and forensic tools.
    How long does it take to complete the CHFI training?
    The duration of our CHFI training in London varies depending on the learning format and schedule. Most training programs can be completed within a few days of intensive instruction.
    Will I receive a certificate after completing the course?
    Yes, your team receive a course completion certificate from Edoxi Training Limited, London. You are eligible to take the official CHFI certification exam from EC-Council.
    What career opportunities are available after CHFI certification?
    Professionals can pursue roles such as digital forensics analyst, cybercrime investigator, incident response analyst, and cybersecurity consultant. These roles are in high demand across the cybersecurity and law enforcement sectors.
    What tools will I learn during the CHFI training?
    Your team learn to use industry-relevant digital forensic tools for data recovery, evidence analysis, and incident investigation. These tools help professionals perform thorough forensic examinations.
    How does CHFI certification help in cybersecurity careers?
    Our CHFI certification in London enhances your expertise in cybercrime investigation and digital evidence handling. It strengthens your profile for roles in cybersecurity, incident response, and forensic analysis.
    Is the CHFI course available in online and classroom formats?
    Yes, Edoxi Training Institute offers the CHFI course in London, both online and classroom training formats in London. This flexibility allows learners to choose the format that fits their schedule.
    What industries require CHFI-certified professionals?
    CHFI professionals are needed in industries such as finance, government, law enforcement, IT security, and consulting. These sectors rely on digital forensics to investigate cyber incidents and data breaches.
    Does the CHFI training include practical labs and real-world scenarios?
    Yes, the course includes hands-on labs and simulated cybercrime investigations. These practical exercises help learners apply forensic techniques in realistic cybersecurity scenarios.
    Why choose CHFI training from Edoxi London?
    Edoxi Training Limited, London, provides expert instructors, hands-on labs, and industry-focused cybersecurity training. The program is designed to help learners build practical digital forensics skills and prepare for global certification. 
    What are the related courses I can take after completing your CHFI classes?

    The following related courses can be done after completing our CHFI course in London:

    •  
      • CEH - Certified Ethical Hacker
      • ECSA - EC-Council Certified Security Analyst
      • CCFE - Certified Computer Forensics Examiner
      • CDFE - Certified Digital Forensics Examiner
      • CISM - Certified Information Security Manager
      • CISSP - Certified Information Systems Security Professional