📕
Threat Intelligence Manual
  • Introduction
  • Contents
  • Module 1: Introduction to Cyber Threat Intelligence
    • Definition and Importance of CTI
    • Threat Intelligence Lifecycle
    • Key Concepts: Indicators, TTPs, IOCs and More
    • Role of CTI in Cybersecurity
  • Module 2: Data Sources and Collection
    • Open Source Intelligence (OSINT) Sources
    • Technical Intelligence (TECHINT) Sources
    • Human Intelligence (HUMINT) Sources
    • Data Collection Techniques and Tools
    • Legal and Ethical Considerations
  • Module 3: Data Processing and Analysis
    • Structuring and Enriching Threat Intelligence Data
    • Indicator Analysis Techniques
    • Malware Analysis Fundamentals
    • Network and Host Artifact Analysis
    • Data Mining and Machine Learning for Threat Analysis
  • Module 4: Threat Modeling and Actor Profiling
    • Adversary Models and Frameworks
    • Tactics, Techniques and Procedures
    • Threat Actor Groups and Motivations
    • Attack Vector Analysis
  • Module 5: Cyber Threat Intelligence Analytics
    • Structured and Unstructured Data Analysis
    • Statistical and Visualization Techniques
    • Reporting and Presentation of Findings
  • Module 6: Threat Intelligence Sharing
    • Standards and Frameworks
    • Threat Intelligence Platforms and Tools
    • Information Sharing Communities
    • Trust Groups and Sharing Protocols
  • Module 7: Building a CTI Program
    • Developing a CTI Strategy and Roadmap
    • Roles and Responsibilities in a CTI Team
    • Integration with Security Operations
    • Measuring CTI Effectiveness and Metrics
  • Module 8: Operationalizing CTI
    • CTI Program Maturity Assessment
    • CTI Workflow Automation and Orchestration
    • CTI Playbooks and Runbooks
    • CTI-driven Threat Hunting Exercises
    • CTI Integration with Security Tools and Systems
Powered by GitBook