Home

Awesome

Neolea training materials overview

neolea logo

The courses overview is centered around information sharing, collaboration around the different aspects of DFIR (digital forensic and incident response). The training setup includes a set of MISP instances in order to support the activities during the training and especially to improve collaboration between teams and sharing at large. The neolea training materials are part of the neolea model which is a concept in development to improve the capabilities for LEA while improving the tooling used in DFIR.

Terminology

List of training materials available

Slides (PDF)Source Code
e.001-introductionsource
e.100-information-sharingsource
e.200-dfir-pdf-analysissource
e.201-digital-forensic-primersource
e.202-network-forensicsource
e.203-file-system-data-recoverysource
e.204-windows-memory-filessource
e.300-data-miningsource
e.301-cryptographysource

Open Source License

All the materials are dual-licensed under GNU Affero General Public License version 3 or later and the Creative Commons Attribution-ShareAlike 4.0 International. You can use either one of the licenses depending of your use case of the training materials.

All the source code is available at https://www.github.com/neolea/neolea-training-materials.

If you reuse the training materials, don't forget to include the above for attribution.

Funding

The neolea project training materials is developed by CIRCL Computer Incident Response Center Luxembourg, and co-financed within the MISP-LEA project.

MISP-LEA project started the first June 2023. It consists in an law enforcement agency information sharing community supported by CIRCL and Shadowserver.

Previous Funding

The neolea project training materials was developed by CIRCL Computer Incident Response Center Luxembourg, and co-financed within ENFORCE.

ENFORCE is an 18-month European project co-funded by the European Commission in the framework of the Internal Security Fund – Police. The project runs from December 2018 to May 2020. The ENFORCE project aims at designing, setting-up, and disseminating a cybercrime training curriculum at the European level. This curriculum will be validated during a training exercise allowing different European public (e.g. law enforcement agencies and CSIRTs) and private actors fighting cybercrime to train together using state-of-the-art training technology. ENFORCE project is coordinated by CEIS and a partnership between CIRCL, French Ministry of Interior and CEIS.

Contributors in alphabetical order

How to contribute

Feel free to fork the training materials, play with it, make some updates or create new content and send us the pull requests. If you have some proposals, ideas or updates, you can also open an issue.

Complementary materials