Cyber Threat Intelligence (CTI)
Cyber threat intelligence is knowledge, skills and experience-based information concerning the occurrence and assessment of both cyber and physical threats and threat actors that is intended to help mitigate potential attacks and harmful events occurring in cyberspace. Cyber threat intelligence sources include open source intelligence, social media intelligence, human Intelligence, technical intelligence, device log files, forensically acquired data or intelligence from the internet traffic and data derived for the deep and dark web. In recent years, threat intelligence has become a crucial part of companies' cyber security strategy since it allows companies to be more proactive in their approach and determine which threats represent the greatest risks to a business. This puts companies on a more proactive front - actively trying to find their vulnerabilities and prevents hacks before they happen.
Threat Feeds and Platforms
GitHub Repos and Mind Maps
Abuse.ch
Cyber Threat Intelligence Top Resources
CrowdStrike
Anomali
Tidal Cyber
Groups
ZoneFiles
Databases & Collections
Intelligence Agency and Security Services Internal Structure
Russia: Russia's Cyber Operations Groups
North Korea (DPRK): North Korea (DPRK) Cyber Operations Groups
APT researchers on Twitter
CVEs / Exploits
Breaches
DarkWeb Resources
Malware Information Sharing Platform (MISP)
Last updated