Under Construction…Stay Tuned
Books and General Infosec
Articles and Whitepapers
- Mandiant | Apt: Exposing One of China’s Cyber Espionage Units
- d00rt/emotet_research
- Google | Peering into the Aquarium
- Whitepapers | Dragos
- Lockheed Martin | Seven Ways to Apply the Cyber Kill Chain within a TIP
- CyberMonitor/APT_CyberCriminal_Campagin_Collections
- kbandla/APTnotes
- Building Threat Hunting Strategies with the Diamond Model – Active Response
- AIS Electronic Library (AISeL) – Wirtschaftsinformatik 2017 Proceedings: Threat Intelligence Sharing Platforms: An Exploratory Study of Software Vendors and Research Perspectives
- https://www.sans.org/reading-room/whitepapers/analyst/membership/35767
- Feature Extraction and Static Analysis for Large-Scale Detection of Malware Types
- Abusing Exchange: One API call away from Domain Admin
- https://digital-forensics.sans.org/community/whitepapers
Threat Intelligence Documentation/Requirements/Models
- JP 2-0, Joint Intelligence
- A Fresh Look at Collection Requirements — Central Intelligence Agency
- ICD 203: Analytic Standards
- Director of National Intelligence | Cyber Threat Framework
- NIST | Guide to Cyber Threat Sharing
- OpenTAXII — OpenTAXII 0.1.10 documentation
- STIX
- Psychology of Intelligence Analysis — Central Intelligence Agency
- HSDL | The nation’s premier collection of homeland security documents
- Cyber.nj.gov
- The Pyramid of Pain
- The Diamond Model of Intrusion Analysis
- MITRE ATT&CK™
- Cyber Kill Chain
- Welcome to YARA’s documentation! — yara 3.8.1 documentation
- http://APT Groups and Operations.com
- cryptome.org/2015/09/cti-guide.pdf
- https://ryanstillions.blogspot.com/2014/04/the-dml-model_21.html
- ISAO Standards Organization – Improving the Nation’s Cybersecurity Posture
- Amazon.com: Structured Analytic Techniques for Intelligence Analysis (9781452241517): Richards J. Heuer, Randolph H. Pherson: Books
- Traffic Light Protocol (TLP) Definitions and Usage
- Starting Small with Threat Intelligence
- Fifteen Axioms for Intelligence Analysts — Central Intelligence Agency