hemalkk/Cyber-Threat-Intelligence-101-by-arcX

# Cyber Threat Intelligence Foundation Study Notes This repository contains my organised study notes from the arcX Foundation Threat Intelligence Analyst learning journey, along with supporting references and a certificate of completion. ## What I learnt - What Cyber Threat Intelligence (CTI) is and why it is threat-centric. - The difference between data, information and intelligence. - How the intelligence cycle supports direction, collection, processing, analysis, dissemination and feedback. - The difference between strategic, operational, tactical and technical CTI. - How CTI supports SOC operations, incident response, vulnerability prioritisation, threat hunting and business risk management. - The importance of actionability, source handling, legal boundaries and ethical judgement. - Lessons from Stuxnet and Mandiant's APT1 report. ## Recommended reading mentioned in the course - *Burning Chrome* - William Gibson - *Rise of the Machines* - Thomas Rid - *Psychology of Intelligence Analysis* - Richards J. Heuer Jr. - *The Art of Deception* - Kevin D. Mitnick and William L. Simon, with a foreword by Steve Wozniak ## References - arcX Foundation Threat Intelligence Analyst course: https://members.arcx.io/courses/foundation-threat-intelligence-analyst - CREST, *What is Cyber Threat Intelligence and how is it used?* - Mandiant, *APT1: Exposing One of China's Cyber Espionage Units* - Congressional Research Service, *The Stuxnet Computer Worm: Harbinger of an Emerging Warfare Capability* - GOV.UK, data protection guidance: https://www.gov.uk/data-protection - ICO UK GDPR guidance: https://ico.org.uk/for-organisations/uk-gdpr-guidance-and-resources/ - GitHub Docs, uploading a project: https://docs.github.com/en/get-started/start-your-journey/uploading-a-project-to-github