1. Investigating Wireless Attacks
§ Passive Attacks
§ Netstumbler
§ Active Attacks On Wireless Networks
§ Rogue Access Points
§ Investigating Wireless Attacks
§ Airmagnet
2. Forensics Investigation Using EnCase
§ Evidence File
§ Evidence File Format
§ Verifying File Integrity
§ Hashing
§ Acquiring Image
§ Configuring Encase
§ Encase Options Screen
§ Encase Screens
§ View Menu
§ Device Tab
§ Viewing Files and Folders
§ Bottom Pane
§ Viewers in Bottom Pane
§ Status Bar
§ Searching
§ Keywords
§ Adding Keywords
§ Grouping
§ Add multiple Keywords
§ Starting the Search
§ Search Hits Tab
§ Search Hits
§ Bookmarks
§ Creating Bookmarks
§ Adding Bookmarks
§ Bookmarking Selected Data
§ Recovering Deleted Files/folders in FAT Partition
§ Recovering Folders in NTFS
§ Master Boot Record
§ NTFS Starting Point
§ Viewing disk Geometry
§ Recovering Deleted Partitions
§ Hash Values
§ Creating Hash Sets
§ MD5 Hash
§ Creating Hash
§ Viewers
§ Signature Analysis
§ Copying Files Folders
§ E-mail Recovery
§ Reporting
§ Encase Boot Disks
§ IE Cache Images
3. First Responder Procedures
§ Steps At Crime Scene
§ People Involved In Incident Response
§ The Role Of A System Administrator
§ First Response By Non-Laboratory Staff
§ Guidelines For Search And Seizure
§ Planning The Search And Seizure
§ Evidence Collection
§ Dealing With Powered Up Computers At Seizure Time
§ How To Pull The Power
§ Seizing Computer Equipment
§ Removable Media
§ Seizing Portable Computers
§ How To Remove HD From Laptops?
§ Initial Interviews
§ Chain Of Custody
4. Checklist for Choosing a Forensic Examiner
5. Investigation Checklist
Source:
http://www.eccouncil.org/EC-Council Education/Chfi-Course.htm
Don
Tools : NetWitness Investigator is now free! 
