A comprehensive guide to CTI self-study covering OSINT source evaluation, pivoting methodologies for infrastructure analysis, threat group clustering and naming conventions, and the nuances of attribution across public and private sectors. Essential reading for analysts building a structured self-directed learning path in cyber threat intelligence.
Katie Nickels lays out a structured self-study curriculum for learning cyber threat intelligence from first principles, drawing on intelligence community frameworks from Sherman Kent and Richards Heuer. Covers the intersection of intelligence tradecraft and cybersecurity, the importance of requirements-driven CTI, and how to engage with the broader CTI community.