01
Fundamentos de IT
Hardware y troubleshooting
Componentes de hardware
Troubleshooting independiente del OS
Tipos de conexión
WiFi / Bluetooth / NFC / Infrared
Suites y software
MS Office Suite
Google Suite
iCloud
02
Sistemas Operativos
Sistemas principales
Linux
Windows
MacOS
Aprender para cada OS
Instalación y configuración
Navegación GUI y CLI
Permisos
Instalar software y aplicaciones
CRUD de archivos
Troubleshooting
Comandos comunes
03
Networking
Fundamentos
Modelo OSI
Subnetting
IP pública vs privada
CIDR / Subnet mask
Default gateway / Loopback / Localhost
Topologías y dispositivos
Star / Ring / Mesh / Bus
LAN / WAN / MAN / WLAN
Router / Switch
VLAN / DMZ / VPN
Protocolos y puertos
DNS / DHCP / NTP
HTTP / HTTPS
FTP / SFTP
SSH / RDP
SSL / TLS
ARP / NAT / IPAM
Herramientas de troubleshooting
ping / tracert / nslookup
ipconfig / netstat / route
nmap / tcpdump / arp
dig / iptables
Port Scanners / Packet Sniffers
Protocol Analyzers
04
Virtualización
Hypervisor / Guest OS / Host OS
VMWare
VirtualBox
ESXi
Proxmox
05
Fundamentos de Seguridad
Conceptos clave
CIA Triad
Defense in Depth
Zero Trust
Definición de riesgo
Falso positivo / Falso negativo
Authentication vs Authorization
MFA y 2FA
Autenticación
Kerberos / LDAP / SSO
RADIUS
Certificates / PKI
Local Auth
Criptografía
Hashing / Salting
Private vs Public Keys
Key Exchange
Obfuscation
Handshakes
Protocolos seguros vs inseguros
FTP vs SFTP
SSL vs TLS
IPSEC / DNSSEC
LDAPS / SRTP / S/MIME
06
Hardening
OS y red
OS Hardening
Patching
Group Policy
ACLs
NAC-based / MAC-based
Port Blocking
Seguridad de perímetro y endpoint
Firewall y Next-Gen Firewall
IDS / IPS (NIDS, NIPS, HIPS)
EDR / DLP
Antivirus / Antimalware
Host Based Firewall
Sandboxing / Sinkholes
Jump Server
Perímetro vs DMZ vs Segmentación
Wireless
WPA vs WPA2 vs WPA3 vs WEP
EAP vs PEAP
WPS
07
Ataques y Amenazas
Ingeniería social
Phishing / Smishing / Whishing
Whaling
Impersonation
Tailgating / Shoulder Surfing
Dumpster Diving
Spam vs Spim
Watering Hole Attack
Ataques comunes
DoS vs DDoS
MITM
Brute Force vs Password Spray
Spoofing
Replay Attack
Pass the Hash
Drive by Attack
Typo Squatting
Ataques web y aplicación
OWASP Top 10
SQL Injection
XSS
CSRF
Directory Traversal
Buffer Overflow / Memory Leak
Wireless y red
Evil Twin
Rogue Access Point
Deauth Attack
VLAN Hopping
DNS Poisoning
Clasificación de amenazas
Malware y tipos
Zero Day
Known vs Unknown
APT
Privilege Escalation
08
Defensa, Respuesta e Inteligencia
Equipos y roles
Blue / Red / Purple Teams
Pentesting Rules of Engagement
Compliance y Auditors
Stakeholders / HR / Legal
Incident response
Preparation
Identification
Containment
Eradication
Recovery
Lessons Learned
Runbooks
Inteligencia y hunting
Threat Intel / OSINT
Threat Hunting
Cyber Kill Chain
Vulnerability Management
Forensics
Reverse Engineering
Honeypots
Backups y resiliencia
Herramientas IR y discovery
Wireshark
nmap / hping
curl / dig / nslookup
Autopsy / FTK Imager / memdump
dd / winhex
head / tail / grep / cat
SIEM / SOAR
Logs
Event Logs / Syslogs
Netflow
Packet Captures
Firewall Logs
OSINT Tools
VirusTotal
urlscan.io
any.run / Joe Sandbox
urlvoid / WHOIS
09
Frameworks y Estándares
Frameworks
MITRE ATT&CK
Cyber Kill Chain
Diamond Model
Estándares y compliance
NIST / RMF / CSF
ISO 27001
CIS Benchmarks
Exploit y hacking tools
Common Exploit Frameworks
LOLBAS / GTFOBINS / WADCOMS
Kali Linux / ParrotOS
Reconnaissance
10
Cloud Security
Conceptos
Security in the Cloud
SaaS / PaaS / IaaS
Cloud vs On-Premises
Private / Public / Hybrid
Infrastructure as Code
Serverless
Plataformas
AWS
Azure
GCP
Cloud storage
S3 / Box
Dropbox / OneDrive
Google Drive / iCloud
11
Programación
Python
Bash
PowerShell
JavaScript
C++
Go
12
Certificaciones
Principiante
CompTIA A+
CompTIA Network+
CompTIA Linux+
CompTIA Security+
CCNA
Avanzado
CEH
CISA
CISM
CISSP
OSCP
CREST
GIAC
GSEC
GPEN
GWAPT
+
Practicar: CTFs
HackTheBox
TryHackMe
VulnHub
picoCTF
SANS Holiday Hack Challenge