Cyber Threat Intelligence is a relatively new field within cyber security. As cyber attacks increase both in terms of volume and sophistication, organizations felt the need to anticipate future cyber attacks by analyzing threat actors, malwares, used modus operandi, motivations and possible affiliations.
Are you a young graduate in the field of cyber security, computer science, international relations & geopolitics?
Are you a junior cyber security professionals (SOC analysts, CERT analysts)?
Are you interested in cyber security and would like to know more about Cyber Threat Intelligence?
If yes, this class will provide you with the following:
The theoretical foundations of Cyber Threat Intelligence:
Definitions of the fundamentals (cyberspace, threat, intelligence, Indicators of Compromise,etc.)
Definition and explanation of CTI-specific models (Cyber Kill Chain, Diamond Model, Pyramid of Pain, MITRE ATT&CK)
Explanation of CTI objectives (Tactical level, Operational level, Strategic Level Intelligence)
Concrete examples of reports published nowadays
Quizzes to test your knowledge
The practical experience to complete CTI-related tasks:
Primo-analysis of a threat actor (context, modus operandi analysis, assessment and recommendations)
Asset monitoring in the Darkweb (setup a virtual environment, VPN connection, identify Darkweb forums and ransomware group activities)
Adversary-controlled infrastructure hunting (SSL certificate pivoting and JARM fingerprint pivoting)
Resources for your future tasks as a CTI analyst:
OSINT report integration framework
Intelligence Workbook
Analysis and reports examples
This class is synthetic, straight to the point, and well-resourced. Enjoy the class and welcome to the CTI community!