well, from my point of view, never mention Anti-Forensic unless u understand what is Forensic actually are, and how it works. Where in order to perform forensic investigation, you might require knowledge like Pen Test, Reverse Engineering, programming, behavioral profiling, Honeypot, Convert Channeletc..

If as the topic stated: - 'Anti-Forensic tools' is something you look forward, than the actual skill/knowledge. Then at least you might need to know how all those Forensic tools work in-and-out, in order for you to evade or bypass them. Tools like EnCase Enterprise, ProDiscover IR, OnLineDFS, NetDetector, NetIntercept, CS_MARS, SuperView are the most common tools that professional will use to perform the investigation with. If you can't avoid being trace or penetrate these tools, don't even mention anti-forensic.

Another method, you might need to build your very own rootkit to cover your back, and i really mean YOUR OWN~! Modified/tuned it payload, attitute, sequence & signature, to alter the kernel and return false info to system calls, rendering unless most tools that incident responders have traditionally used to examine a live system for signs of compromise. Programs like Hacker Defender might perform similar stuff, but still detectable!!

Next thing you need to concern is those NG-Digital Forensic technique. Forensic Investigator also will improve & upgrade their skill & method, where they notice that "Anti-Forensic" are trying to beat their ass. They will migate to more higer level way of perform forensic. So in order for you to competitive back, you also need to know how to break stuff like Digital Evidence Bag(DEB) or finding weakness at Advanced Forensic Format (AFF) file(e.g.aimage..).

Perhaps you also can try out Metasploit Anti-Forensic Investigation Arsenal (MAFIA) from Metasploit project, which i think its only some basic tools for Anti-Forensic. MAFIA include tools like 'Timestomp' - allows modify all four NTFS timestamp values: modified, accessed, created, and entry modified. 'Slacker' - allows to hide files within the slack space of the NTFS file system. 'Sam Juicer' - A Meterpreter module that dumps the hashes from the SAM, but does it without ever hitting disk. 'Transmogrify' - First ever tool to defeat EnCase's file signaturing capabilities by allowing you to mask and unmask your files as any file type.

Hope this info can help~