Example Usage
. ├── 00_Introduction_BTL1/ # exam format, philosophy, strategy, personal experience ├── 01_Phishing_Analysis/ # header analysis, attachment triage, detection workflows ├── 02_Threat_Intelligence/ # IOC management, ATT&CK TTP mapping ├── 03_Digital_Forensics/ │ ├── 02_Disk_Analysis/ # NTFS artifacts, registry hives, file carving │ └── 03_Memory_Analysis/ # Volatility profiles, injection detection ├── 04_SIEM_Analysis/ # SPL query structures, log correlation rules ├── 05_Network_Analysis/ # BPF filters, protocol anomalies, PCAP carving └── 06_Incident_Response/ # IR lifecycle, containment, live response
See also
TRACE-Forensic-Toolkit
Open Source
Digital forensic analysis tool that provides a user-friendly interface for investigating disk images…
toolkit
Free
The essential toolkit for reversing, malware analysis, and cracking…
LockKnife
Open Source
LockKnife: The Ultimate Android Security Research Tool. A unified TUI workspace and headless CLI for…
goodboy-framework
Open Source
15-stage Windows malware development & analysis course in Rust. Red team builds it, blue team detect…
joincap
Open Source
Merge multiple pcap files together, gracefully.…
incident-response-plan-template
Free
A concise, directive, specific, flexible, and free incident response plan template…