Overview

Our digitised society has transformed cybercrime and cyber-enabled fraud into a major revenue stream for organised crime groups (OCG). Action Fraud reports that 80% of reported frauds are cyber-enabled; they could have taken place offline, but their scale, reach and impact have been expanded using online services and digital technology.

Ransomware and the cost of cybercrime is already up a percent of global GDP, over £500 billion a year. The global cybercrime epidemic shows every sign of continuing to rampage through every global economy. This National Cyber Security Center (NCSC) assured course will give you a good understanding of a number of important topics needed as a Cybercrime Specialist, including:

  • How a computer works and what its fundamental components are
  • How do computers communicate via networks and what protocols are used
  • What is binary and why do we use hex and not decimal
  • Fundamentals of encryption, cloud and virtualisation
  • An introduction to digital forensics and why the integrity of data is paramount no matter what your role
  • An understanding of the Computer Misuse Act and Data Protection and why they are important
  • Cybercrime threats and cybercrime offences

The follow-on course in the cybercrime pathway is the Cybercrime Investigators course.

Read more

Prerequisites

None.

Read more

Delegates will learn how to

This National Cyber Security Center (NCSC) accredited five-day course will give delegates a good understanding of a number of important topics needed as a Cybercrime Specialist, including:

  • How a computer works and what its fundamental components are
  • How do computers communicate via networks and what protocols are used
  • What is binary and why do we use hex and not decimal
  • Fundamentals of encryption, cloud and virtualisation
  • An introduction to digital forensics and why the integrity of data is paramount no matter what your role
  • An understanding of the Computer Misuse Act and Data Protection and why they are important
  • Cybercrime threats and cybercrime offences

The course includes a real-time ransomware simulation exercise.

Read more

Outline

Module 1 – Computing Concepts & Operating Systems

  • To explain computer system components
  • Describe the differences between magnetic hard drives and solid state drives
  • To explain the different characteristics of operating systems
  • What file systems are used and what data is contained
  • What is a RAID (Redundant Array of Independent Disks)
  • What is serverless computing?

Exercise - How to create user accounts

Module 2 – Networking Protocols & Network Security

  • To explain how networks function?
  • How data travels the network?
  • Logical address (IP4 and IP6)
  • What security protocols can be applied on the network and what they are?
  • What are the different types of Firewalls and Gateways and how they work?

Exercise - Use CLI for diagnostic purposes

Module 3 – Network Architectures & Topologies

  • Applications and Application-layer Protocols
  • What is Dynamic Host Configuration Protocol (DHCP) and how it functions?
  • Attacks against the DHCP and mitigations
  • What is information assurance architecture?
  • Network traffic analysis

Exercise - Performing network traffic analysis

Exercise - Create and alter packets with hping3 and eavesdropping with Wireshark

Module 4 – Cloud & Virtualisation

  • What is virtualisation?
  • What is a container?
  • What is cloud computing and what technologies are used?
  • How security is applied within cloud computing
  • Breaches impacted by the cloud
  • Evidential opportunities in the cloud

Exercise - Setting up your own virtual machine

Module 5 – Principles of Digital Evidence

  • Digital evidence principles and forensic frameworks
  • Data vs Information
  • Understanding file systems
  • IoT device challenges
  • Digital forensic images
  • Windows & Linux log file analysis
  • Write blocking and best practice
  • Mobile device images
  • Digital evidence

Exercise - Windows Log Analysis

Exercise - Linux Log Analysis

Module 6 – Digital Footprints

  • Explain what information and data may be passively or actively transmitted or submitted
  • Review data we place in our digital world can easily be harvested
  • Email header analysis
  • Understand how to take care to protect our data as best as we can
  • Discuss social networks, know how to lockdown accounts
  • Practice good passphrase management
  • Password cracking

Exercise - Windows Defender Firewall

Exercise - Linux Firewalls

Exercise - Windows Defender

Exercise - Email headers

Module 7 – Digital Currency Concepts

  • How bitcoin and virtual currencies work
  • How the block chain works
  • What is Proof of work?
  • Identifying other cryptocurrencies

Exercise - Bitcoin Technologies

Exercise - Bitcoin in crime

Exercise - Auditing a bitcoin transaction

Module 8 – Cyber Attacks & Cyber Offences

  • Cyber dependant and enabled crime
  • Cyber exploits and vulnerability scanning
  • Malware
  • Denial of Service
  • Combating threats
  • Advanced threat analysis

Exercise - Nmap and Zenmap

Exercise - Vulnerability Scanning with Nikto

Exercise - Advanced Network Scanning with SPARTA

Exercise - Denial-of-Service using LOIC

Exercise - Advanced Persistent Threat Analysis

Exercise - Honeypots

Module 9 – Encryption

  • To explain the uses of encryption technologies
  • Describe conventional encryption principles
  • To explain cipher classification
  • Asymmetric and Symmetric encryption
  • PKI and Certificate Authorities
  • Digital Signatures
  • Hashing scenarios
  • Ubiquitous encryption

Exercise - Hashing Scenario

Exercise - Digital Certificates

Module 10 – Introduction to Neurodiversity

  • What is neurodiversity?
  • Common neurodivergent thinking styles
  • Benefits of neurodivergent thinking styles
  • Challenges of neurodivergent thinking styles
  • Neurodiversity and Cybercrime

National Cyber Security Center (NCSC) Assured Training Exam, taken post course.

  • Online proctored exam taken post-course
  • Duration - 70 minutes
  • Questions 50, multiple choice (4 multiple choice answers only 1 of which is correct)
  • Pass mark 50%
  • Digital badge - Certified Cybercrime Specialist
Read more

You will be issued with the Cyber Exercise Responder digital badge, upon completing the gamified CyberFish Dojo cyber ransomware attack simulation exercise, which is included within your course as a capstone knowledge consolidation exercise.

Special Notices

This course is accredited under the NCSC Cybersecurity Assured training scheme.

Dates & Locations

Cyber Security learning paths

Want to boost your career in cyber security? Click on the roles below to see QA's learning pathways, specially designed to give you the skills to succeed.

Required Star = Required
Certification = Certification
AI Security & Governance
Application Security
Cyber Blue Team
Cloud Security
DFIR Digital Forensics & Incident Response
Industrial Controls & OT Security
Information Security Management
NIST Pathway
OffSec
Privacy Professional
Reverse Engineer
Secure Coding
Security Architect
Security Auditor
Security Risk
Security Tech Generalist
Vulnerability Assessment & Penetration Testing

Cyber Defensive Operations learning paths

Want to boost your career in Cyber Defensive Operations? View QA's learning pathways below, specially designed to give you the skills to succeed.

Required Star = Required
Certification = Certification
Cyber Blue Team
DFIR Digital Forensics & Incident Response
Security Tech Generalist

Frequently asked questions

See all of our FAQs

How can I create an account on myQA.com?

There are a number of ways to create an account. If you are a self-funder, simply select the "Create account" option on the login page.

If you have been booked onto a course by your company, you will receive a confirmation email. From this email, select "Sign into myQA" and you will be taken to the "Create account" page. Complete all of the details and select "Create account".

If you have the booking number you can also go here and select the "I have a booking number" option. Enter the booking reference and your surname. If the details match, you will be taken to the "Create account" page from where you can enter your details and confirm your account.

Find more answers to frequently asked questions in our FAQs: Bookings & Cancellations page.

How do QA’s virtual classroom courses work?

Our virtual classroom courses allow you to access award-winning classroom training, without leaving your home or office. Our learning professionals are specially trained on how to interact with remote attendees and our remote labs ensure all participants can take part in hands-on exercises wherever they are.

We use the WebEx video conferencing platform by Cisco. Before you book, check that you meet the WebEx system requirements and run a test meeting (more details in the link below) to ensure the software is compatible with your firewall settings. If it doesn’t work, try adjusting your settings or contact your IT department about permitting the website.

Learn more about our Virtual Classrooms.

How do QA’s online courses work?

QA online courses, also commonly known as distance learning courses or elearning courses, take the form of interactive software designed for individual learning, but you will also have access to full support from our subject-matter experts for the duration of your course. When you book a QA online learning course you will receive immediate access to it through our e-learning platform and you can start to learn straight away, from any compatible device. Access to the online learning platform is valid for one year from the booking date.

All courses are built around case studies and presented in an engaging format, which includes storytelling elements, video, audio and humour. Every case study is supported by sample documents and a collection of Knowledge Nuggets that provide more in-depth detail on the wider processes.

Learn more about QA’s online courses.

When will I receive my joining instructions?

Joining instructions for QA courses are sent two weeks prior to the course start date, or immediately if the booking is confirmed within this timeframe. For course bookings made via QA but delivered by a third-party supplier, joining instructions are sent to attendees prior to the training course, but timescales vary depending on each supplier’s terms. Read more FAQs.

When will I receive my certificate?

Certificates of Achievement are issued at the end the course, either as a hard copy or via email. Read more here.

Contact Us

Please contact us for more information