├── 00_Introduction_BTL1 ├── 01_What_is_BTL1.md ├── 02_Exam_Philosophy.md ├── 03_General_Strategy.md └── 04_My_BTL1_Experience.md ├── 01_Phishing_Analysis ├── 01_Key_Concepts.md ├── 02_Tools.md ├── 03_Commands_Cheatsheet.md ├── 04_Analysis_Workflow.md ├── 05_Practice_Resources.md └── README.md ├── 02_Threat_Intelligence ├── 01_Key_Concepts.md ├── 02_MITRE_ATTACK.md ├── 03_Tools.md ├── 04_IoC_Workflow.md ├── 05_Practice_Resources.md └── README.md ├── 03_Digital_Forensics ├── 01_Acquisition.md ├── 02_Disk_Analysis │ ├── Disk_Tools.md │ ├── File_Carving_Scalpel.md │ ├── Linux_Artifacts.md │ ├── Metadata_ExifTool.md │ ├── README.md │ └── Windows_Artifacts.md ├── 03_Memory_Analysis │ ├── Key_Concepts.md │ ├── README.md │ └── Volatility_Tool.md ├── 04_Practice_Resources.md └── README.md ├── 04_SIEM_Analysis ├── 01_Key_Concepts.md ├── 02_Splunk_Cheatsheet.md ├── 03_Common_Searches.md ├── 04_Practice_Resources.md └── README.md ├── 05_Network_Analysis ├── 01_Key_Concepts.md ├── 02_Wireshark_Tshark.md ├── 03_Filters_Cheatsheet.md ├── 04_Specific_Protocol_Analysis.md ├── 05_Malicious_Patterns.md ├── 06_Practice_Resources.md └── README.md ├── 06_Incident_Response ├── 01_IR_Lifecycle.md ├── 02_Live_Response_Windows.md ├── 03_Live_Response_Linux.md ├── 04_Containment_Eradication.md ├── 05_Practice_Resources.md └── README.md ├── CODE_OF_CONDUCT.md ├── CONTRIBUTING.md ├── LICENSE ├── README.md └── assets └── img ├── BANNER_BTL1.jpeg └── icono.png /00_Introduction_BTL1/01_What_is_BTL1.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/00_Introduction_BTL1/01_What_is_BTL1.md -------------------------------------------------------------------------------- /00_Introduction_BTL1/02_Exam_Philosophy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/00_Introduction_BTL1/02_Exam_Philosophy.md -------------------------------------------------------------------------------- /00_Introduction_BTL1/03_General_Strategy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/00_Introduction_BTL1/03_General_Strategy.md -------------------------------------------------------------------------------- /00_Introduction_BTL1/04_My_BTL1_Experience.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/00_Introduction_BTL1/04_My_BTL1_Experience.md -------------------------------------------------------------------------------- /01_Phishing_Analysis/01_Key_Concepts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/01_Phishing_Analysis/01_Key_Concepts.md -------------------------------------------------------------------------------- /01_Phishing_Analysis/02_Tools.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/01_Phishing_Analysis/02_Tools.md -------------------------------------------------------------------------------- /01_Phishing_Analysis/03_Commands_Cheatsheet.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/01_Phishing_Analysis/03_Commands_Cheatsheet.md -------------------------------------------------------------------------------- /01_Phishing_Analysis/04_Analysis_Workflow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/01_Phishing_Analysis/04_Analysis_Workflow.md -------------------------------------------------------------------------------- /01_Phishing_Analysis/05_Practice_Resources.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/01_Phishing_Analysis/05_Practice_Resources.md -------------------------------------------------------------------------------- /01_Phishing_Analysis/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/01_Phishing_Analysis/README.md -------------------------------------------------------------------------------- /02_Threat_Intelligence/01_Key_Concepts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/02_Threat_Intelligence/01_Key_Concepts.md -------------------------------------------------------------------------------- /02_Threat_Intelligence/02_MITRE_ATTACK.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/02_Threat_Intelligence/02_MITRE_ATTACK.md -------------------------------------------------------------------------------- /02_Threat_Intelligence/03_Tools.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/02_Threat_Intelligence/03_Tools.md -------------------------------------------------------------------------------- /02_Threat_Intelligence/04_IoC_Workflow.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/02_Threat_Intelligence/04_IoC_Workflow.md -------------------------------------------------------------------------------- /02_Threat_Intelligence/05_Practice_Resources.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/02_Threat_Intelligence/05_Practice_Resources.md -------------------------------------------------------------------------------- /02_Threat_Intelligence/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/02_Threat_Intelligence/README.md -------------------------------------------------------------------------------- /03_Digital_Forensics/01_Acquisition.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/01_Acquisition.md -------------------------------------------------------------------------------- /03_Digital_Forensics/02_Disk_Analysis/Disk_Tools.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/02_Disk_Analysis/Disk_Tools.md -------------------------------------------------------------------------------- /03_Digital_Forensics/02_Disk_Analysis/File_Carving_Scalpel.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/02_Disk_Analysis/File_Carving_Scalpel.md -------------------------------------------------------------------------------- /03_Digital_Forensics/02_Disk_Analysis/Linux_Artifacts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/02_Disk_Analysis/Linux_Artifacts.md -------------------------------------------------------------------------------- /03_Digital_Forensics/02_Disk_Analysis/Metadata_ExifTool.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/02_Disk_Analysis/Metadata_ExifTool.md -------------------------------------------------------------------------------- /03_Digital_Forensics/02_Disk_Analysis/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/02_Disk_Analysis/README.md -------------------------------------------------------------------------------- /03_Digital_Forensics/02_Disk_Analysis/Windows_Artifacts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/02_Disk_Analysis/Windows_Artifacts.md -------------------------------------------------------------------------------- /03_Digital_Forensics/03_Memory_Analysis/Key_Concepts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/03_Memory_Analysis/Key_Concepts.md -------------------------------------------------------------------------------- /03_Digital_Forensics/03_Memory_Analysis/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/03_Memory_Analysis/README.md -------------------------------------------------------------------------------- /03_Digital_Forensics/03_Memory_Analysis/Volatility_Tool.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/03_Memory_Analysis/Volatility_Tool.md -------------------------------------------------------------------------------- /03_Digital_Forensics/04_Practice_Resources.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/04_Practice_Resources.md -------------------------------------------------------------------------------- /03_Digital_Forensics/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/03_Digital_Forensics/README.md -------------------------------------------------------------------------------- /04_SIEM_Analysis/01_Key_Concepts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/04_SIEM_Analysis/01_Key_Concepts.md -------------------------------------------------------------------------------- /04_SIEM_Analysis/02_Splunk_Cheatsheet.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/04_SIEM_Analysis/02_Splunk_Cheatsheet.md -------------------------------------------------------------------------------- /04_SIEM_Analysis/03_Common_Searches.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/04_SIEM_Analysis/03_Common_Searches.md -------------------------------------------------------------------------------- /04_SIEM_Analysis/04_Practice_Resources.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/04_SIEM_Analysis/04_Practice_Resources.md -------------------------------------------------------------------------------- /04_SIEM_Analysis/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/04_SIEM_Analysis/README.md -------------------------------------------------------------------------------- /05_Network_Analysis/01_Key_Concepts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/01_Key_Concepts.md -------------------------------------------------------------------------------- /05_Network_Analysis/02_Wireshark_Tshark.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/02_Wireshark_Tshark.md -------------------------------------------------------------------------------- /05_Network_Analysis/03_Filters_Cheatsheet.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/03_Filters_Cheatsheet.md -------------------------------------------------------------------------------- /05_Network_Analysis/04_Specific_Protocol_Analysis.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/04_Specific_Protocol_Analysis.md -------------------------------------------------------------------------------- /05_Network_Analysis/05_Malicious_Patterns.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/05_Malicious_Patterns.md -------------------------------------------------------------------------------- /05_Network_Analysis/06_Practice_Resources.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/06_Practice_Resources.md -------------------------------------------------------------------------------- /05_Network_Analysis/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/05_Network_Analysis/README.md -------------------------------------------------------------------------------- /06_Incident_Response/01_IR_Lifecycle.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/06_Incident_Response/01_IR_Lifecycle.md -------------------------------------------------------------------------------- /06_Incident_Response/02_Live_Response_Windows.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/06_Incident_Response/02_Live_Response_Windows.md -------------------------------------------------------------------------------- /06_Incident_Response/03_Live_Response_Linux.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/06_Incident_Response/03_Live_Response_Linux.md -------------------------------------------------------------------------------- /06_Incident_Response/04_Containment_Eradication.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/06_Incident_Response/04_Containment_Eradication.md -------------------------------------------------------------------------------- /06_Incident_Response/05_Practice_Resources.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/06_Incident_Response/05_Practice_Resources.md -------------------------------------------------------------------------------- /06_Incident_Response/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/06_Incident_Response/README.md -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /CONTRIBUTING.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/CONTRIBUTING.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/README.md -------------------------------------------------------------------------------- /assets/img/BANNER_BTL1.jpeg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/assets/img/BANNER_BTL1.jpeg -------------------------------------------------------------------------------- /assets/img/icono.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Nervi0zz0/BTL1-Study-Guide/HEAD/assets/img/icono.png --------------------------------------------------------------------------------