3-Day Course — Online Self-Paced

Computer Forensics Fundamentals

Name: Computer Forensics Fundamentals
Price: 1800 USD
Availability: InStock

Windows, macOS, and Linux forensic acquisition and analysis. Designed for practitioners who handle real evidence, write real reports, and testify in real cases. 11 modules, 26 lessons, module quizzes, and a final assessment.

🌐 Taught by Eric L. Waldrep — U.S. State Dept. ATA Cyber Mentor · MCFE Certified · 200+ Cases

$1,800

per seat

🏷 Group rate: $1,400/seat for 8+ attendees

Duration3 days / 24 hrs

FormatOnline Self-Paced

Modules11 modules

Lessons26 lessons

ToolsAutopsy, FTK, X-Ways

CertificateYes

✅ You're enrolled. Go to Course →

Request Group Pricing Government PO / Net-30

Secure checkout via Stripe. Instant access after payment confirmation. Government PO and net-30 billing available by request.

What You'll Learn

✓Establish legal authority before any examination — consent, warrants, and corporate authorization

✓Perform forensically sound dead-box and live acquisitions with write blockers and hash verification

✓Analyze Windows NTFS artifacts — MFT, $UsnJrnl, MACE timestamps, and deleted file recovery

✓Extract and interpret browser history, email artifacts, and user activity from Windows and macOS

✓Identify USB connection artifacts and connect device usage to specific users via registry and LNK files

✓Build defensible event timelines from multiple artifact sources without timestamp interpretation errors

✓Operate Autopsy, FTK, and X-Ways workflows and cross-validate critical findings across tools

✓Write court-ready forensic reports that separate findings from opinions and withstand cross-examination

Built for Practitioners

Not an academic overview. This course is designed for professionals who will use this knowledge in real cases, real courts, and real investigations.

🚔

Law Enforcement

⚖️

Attorneys & Paralegals

🏛️

Government Agencies

🪖

Military & Intelligence

🏢

Corporate Security

🔍

Private Investigators

🧪

Forensic Examiners

📋

Compliance Teams

11 Modules · 26 Lessons · Final Assessment

01Computer Forensics Foundations▾

What Computer Forensics Is
Civil, Criminal, Corporate & Legal Use Cases
Digital Evidence Concepts
Forensic Soundness
Common Mistakes

✓ Module Quiz

02Legal Authority, Ethics & Scope▾

Consent, Warrants & Court Orders
Corporate Authorization & Private-Sector Scope
Scope Control & Documentation Requirements

03Evidence Handling & Chain of Custody▾

Evidence Intake & Labeling
Storage, Hashing & Chain-of-Custody Records

04Acquisition Fundamentals▾

Live vs. Dead-Box Acquisition
Imaging Concepts & Validation

05File System Artifacts▾

Windows File System Artifacts (NTFS, MFT, $UsnJrnl, MACE)
macOS & Linux File System Artifacts

06Browser, Email & User Activity▾

Browser Artifacts (Chrome, Firefox, Edge)
Email Artifacts (PST, OST, headers)

07USB & External Device Activity▾

USB Connection Artifacts & User Attribution

08Timeline Reconstruction▾

Building a Defensible Timeline

09Analysis Workflow & Tool Validation▾

Autopsy Workflow
FTK & X-Ways; Cross-Tool Validation

10Reporting & Court Readiness▾

Forensic Report Structure
Expert Witness Testimony Preparation

11Final Assessment▾

Course Review & Key Takeaways

★ Final Knowledge Quiz · Certificate of Completion

Taught by the Practitioner Who Built It

Eric L. Waldrep

Director of Training — The Waldrep Company | U.S. State Dept. ATA Cyber Mentor | MCFE Certified

Eric Waldrep has been in law enforcement for 27+ years and active digital forensics for 17+ years. He has examined 200+ cases in federal and state courts with a 100% expert witness qualification rate. Selected by the U.S. State Department's Antiterrorism Assistance (ATA) program as a Cyber Mentor, training allied nation law enforcement in digital forensics. Every module in this course comes directly from real casework — not textbook scenarios.

MCFE Certified

State Dept. ATA Cyber Mentor

17+ years forensics

27+ years law enforcement

200+ cases

0 disqualifications

Certificate of Completion

🎓

Certificate of Completion — The Waldrep Company

Students who complete all 11 modules and the final assessment receive a Certificate of Completion from The Waldrep Company, issued in the student's name and signed by Eric L. Waldrep. The certificate includes course title, completion date, and course duration.

Note: This is a Certificate of Completion from The Waldrep Company. It does not constitute a third-party forensic certification such as MCFE or CCPA.

Frequently Asked Questions

What access do I get after purchasing?▾

Immediate access to all 11 modules and 26 lessons after Stripe payment confirmation. Access is tied to your student account and available on any device.

Is this the same curriculum as the live 3-day course?▾

Yes. The online course covers the same curriculum as the live cohort, with the same practitioner-authored content. The difference is delivery format — self-paced online instead of live instruction.

Do I need forensic tools installed to take this course?▾

No tool installation is required to complete the course. The course covers Autopsy, FTK, and X-Ways workflows through detailed written instruction and concept-based lessons. Autopsy is free and open-source if you wish to follow along.

Can my agency purchase seats via purchase order?▾

Yes. Government purchase orders and net-30 invoicing are accepted. Contact us at (251) 216-1164 or submit an inquiry to arrange PO-based enrollment.

What is the group rate?▾

Groups of 8 or more receive a reduced rate of $1,400 per seat. Contact us to arrange group enrollment and invoicing.

Is a refund available?▾

Please contact us at (251) 216-1164 or info@thewaldrepcompany.com within 7 days of purchase if you have a concern about your enrollment.