People
| Name | Bio | Links |
|---|---|---|
| Katie Nickels | Director of Intelligence at Red Canary and SANS instructor. CTI advocate and supports Cyberjutsu Girls Academy. |
LinkedIn |
| Will Thomas / Bushido | Senior Threat Intelligence Advisor at Team Cymru, SANS co-author, and founder of BushidoToken Threat Intel and Curated Intelligence. |
LinkedIn Website |
| Joe Slowik | MITRE ATT&CK lead, CTI consultant at Paralus LLC. Former roles at Dragos, DomainTools, Huntress, Gigamon. |
LinkedIn |
| Brett Tolbert | Principal Cyber Defense Threat Intelligence Analyst at Exelon, community educator, and Cyversity mentor. | |
| Jennifer Funk / Alt Funktion | CTI analyst and content creator who shares CTI education through TikTok and her website. Background in military and marketing. |
LinkedIn Website |
| Matt Johansen | Security educator, creator of Vulnerable U, speaker, and infosec community advocate. |
LinkedIn Vulnerable U |
| Jen Easterly | Former Director of CISA and cybersecurity leader focused on public-private partnerships and cyber resilience. |
LinkedIn |
| Christopher Luft | Co-founder of LimaCharlie.io and other amazing CTI initiatives including organizing the Cybersecurity Cares benefit and telethon. |
LinkedIn |
| Grace C | Cofounder & COO of Pulsedive Cyber Threat Intelligence, incredible human being, and CTI extraordinaire! |
LinkedIn |
Groups/Orgs
| Name | Description | Links |
|---|---|---|
| The Citizen Lab | Interdisciplinary research hub at University of Toronto investigating the intersection of tech, human rights, and global security. |
Website Bluesky |
| Curated Intelligence | A collective of CTI professionals sharing intelligence, insights, and tracking threats. |
Website |
| Tracking Ransomware | Nonprofit watchdog monitoring ransomware actors and leaks. |
Website Bluesky |
| DFIR Report | Breakdowns of real-world attacks by incident responders. Excellent for staying on top of TTPs. | Website |
| MITRE ATT&CK | CTI framework used globally to describe and categorize adversary behavior. | Website |
Communities/Newsletters
| Name | Description | Link |
|---|---|---|
| LimaCharlie Community | Security-focused Slack group for detection engineers and CTI professionals. | Join here |
| CyberThreat.Cafe | Newsletter for CTI professionals and researchers. | Subscribe |
| Thomas Roccia - Security Break | Books, trainings, coaching, and a newsletter by a seasoned CTI practitioner! | Website |