Computer Forensic Training Center Online

How much do I need to know about computers to take the CCE BootCamp training?

This is not an entry level course. Although we try to teach you computer forensics from the ground up, strong computer skills, including the ability or desire to work outside the Windows GUI interface, are necessary. The ability or desire to work with computer hardware, including the removal of hard-disk drives and changing jumpers is also required.

Any prospective students that question whether or not they have the skill level to enroll in the BootCamp should complete the BootCamp Screening Sample Test to assist in assessing skill level and readiness for the CCE BootCamp.

This training utilizes practical exercises and is more than 50% hands on. If you would like to speak to someone regarding your experience and qualifications for this training, please contact us.

Newer PC with latest updates and BIOS
Windows 2000 or XP Operating system (Vista is currently being tested for compatibility issues)
Internet access
512 MB (or more) memory
2 GB or larger hard disk drive for examination purposes
Integrated PS/2 ports (Not USB Keyboard or Mouse)
2 open USB 2.0 ports

Currently, Key Computer Service's Online CCE Bootcamp training does not require students to provide any software in order to complete the course. All necessary software will be shipped to the students or made available for download via the KCS Toolbelt website.

Can I use a laptop computer to complete your course?

Yes, you can. Aside from any issues that may arise due to driver incompatibilities. In fact, we have recerntly found our online students to have better luck with these issues on laptop computers over their desktop counterparts. Despite any hardware issues, our instructors will work with their students to resolve them to the best of their abilities.

Can I use my office machine for your course?

Yes, if you have additional hard disk drives that are specifically set aside as examination drives and target drives. During the course we instruct you how to make a master examination drive and how to make and verify forensically sterile media. Forensically sterile media should be used for both your examination drive (the drive that holds your forensic utilities) and the target drive (the forensic copy of the original media).

How does your course work?

A detailed manual is provided for each module taught. Each student is provided assistance and email contact with an instructor. The student should study the module and discuss anything that he or she doesn't understand about the module with the instructor. Once the student feels that he or she has a reasonable grasp of the topics in the module, they should then do the practical exercises for the module. The practical exercises instruct on the technical issues and provide practice and understanding of the techniques involved. If any problems are encountered in understanding the technical issues or techniques, the instructor will provide as much help and information as necessary to complete the practical exercises.

Can I take your course online or from a distance without going to a classroom?

Our computer forensic examiner course is designed for distance learning and the course is conducted online through email and accessing our site. Because of this, there is no need to visit a training center.

How much interaction will I have with my instructor?

You will have as much interaction as it takes to learn each topic. Your instructor will explain any issues that are not clear to you in the student handout. Your instructor will guide you through the practical exercises and will provide as much help and information as necessary to complete the practical exercises. There is a detailed examination after each module that essentially covers all of the issues covered in the module. Your instructor will review the examination and explain and discuss any issues that are not clear on the examination. We, and your instructor, want you to learn the material and we will do whatever it takes to help you learn and fully understand the material.

How much does the course cost?

The course fee is $2895 (discounts are available for Law enforcement, Military, Government, Education, & Non-profit employees).

Can I make payments for the course?

There is a pay-as-you-go payment plan available. Please visit http://www.keycomputer.net/cftco-payment.htm for more information.

The course is open for immediate enrollment. Once enrolled, you will be given access to the material and may start as quickly as you receive your welcome message – usually within 1-2 business days.

How long does the course take?

Typically the course takes about 3-6 months to complete. The actual time to complete the course depends on the amount of time that the student commits to the course and how quickly the student can learn. The strength of our course is that it is self-paced. This format gives the student much more time to understand and digest the material and as much time as it takes to learn and practice the skills necessary to conduct forensic examinations. This also allows the student much more time to interact with his or her instructor. Since the course is self-paced, it allows you to proceed to the next topic when you have learned and understand the material, not when the time allotted for a particular block of instruction is over. It also allows for interruptions caused by work or family and doesn't require 100% of your time while taking the course.

Do you offer a certification?

Our students will be provided our certificate of completion of the CCE BootCamp and will also meet the requirements to register and test for the CCE (Certified Computer Examiner) certification.

I live outside of the United States. Can I take your course?

Yes, you can. Our course was designed for distance learning and is working very well. We have students from as far away as South America, Canada, the United Kingdom, Hong Kong, Singapore and Australia, with local instructors available in the UK and Australia.

Who are your instructors?

Our instructors are all CCEs and are highly qualified forensic examiners. They understand forensic examinations far beyond the course material and can provide outstanding instruction to you. You can learn much more than the course material from our instructors because of their vast experience. See our Staff page to learn more about them.

How is this course different than Encase, Access Data, or similar training?

We teach the basic methodologies for conducting sound forensic examinations. In other words, we teach the skills and methodologies that must be used by an examiner no matter what tool the examiner chooses to use. Other product specific training focuses on how to use specific software to conduct forensic examinations. We believe that it is extremely important that a forensic computer examiner knows the underlying methodologies, operating system theory and the principles of what the automated software is doing when it examines suspect media.

The CCE BootCamp training will cover core forensic procedures based upon the Key Philosophy emphasizing the expertise and knowledge of the examiner forensic practices NOT the forensic tools.

The training focus is not only on forensic recovery techniques, but on ensuring what the examiner finds will be admitted in court. Both sound examination and handling procedures are taught. The examiner, not the forensic tool used, must qualify as an expert witness. An understanding of how to articulate what evidence forensic tools uncover is critical. Too frequently, experienced examiners using automated tools examine a formatted diskette containing evidentiary data and report the diskette is blank. Is this a problem with the tool or the examiner's training?

Learning computer forensics sounds like a great idea. Will completing your course guarantee that I will get a job in the computer forensic examination field?

No, we will teach you the skills to become a good forensic examiner, but we cannot assure you that you will be able to obtain a position in the field. If you already have a position or are looking for a position in the computer field, our course will greatly enhance your skills and your potential marketability for advancing within your own company or for gaining a new position.

A combination of knowledge, training, experience and certification is necessary for recognition in court as a computer forensic expert. All of these qualifications are important and this training will greatly enhance your current skill set or get you started with the foundation you need to become an examiner.

Students often remain in contact with their instructors following their training. Students will also maintain access to the KCS ToolBelt and the applicable training materials used within the course. The students also maintain access to the Student Listserv which allows them to communicate amongst themselves freely.