People
| Name | Bio | Links |
|---|---|---|
| Katie Nickels | Director of Intelligence at Red Canary and SANS instructor. CTI advocate and supports Cyberjutsu Girls Academy. |
LinkedIn |
| Will Thomas / Bushido | Senior Threat Intelligence Advisor at Team Cymru, SANS co-author, and founder of BushidoToken Threat Intel and Curated Intelligence. |
LinkedIn Website |
| Joe Slowik | MITRE ATT&CK lead, CTI consultant at Paralus LLC. Former roles at Dragos, DomainTools, Huntress, Gigamon. |
LinkedIn |
| Brett Tolbert | Principal Cyber Defense Threat Intelligence Analyst at Exelon, community educator, and Cyversity mentor. | |
| Jennifer Funk / Alt Funktion | CTI analyst and content creator who shares CTI education through TikTok and her website. Background in military and marketing. |
LinkedIn Website |
| Matt Johansen | Security educator, creator of Vulnerable U, speaker, and infosec community advocate. |
LinkedIn Vulnerable U |
| Jen Easterly | Former Director of CISA and cybersecurity leader focused on public-private partnerships and cyber resilience. |
LinkedIn |
| Christopher Luft | Co-founder of LimaCharlie.io and other amazing CTI initiatives including organizing the Cybersecurity Cares benefit and telethon. |
LinkedIn |
| Grace C | Cofounder & COO of Pulsedive Cyber Threat Intelligence, incredible human being, and CTI extraordinaire! |
LinkedIn |
Groups and Orgs
| Name | Description | Links |
|---|---|---|
| The Citizen Lab | Interdisciplinary research hub at University of Toronto investigating the intersection of tech, human rights, and global security. |
Website Bluesky |
| Curated Intelligence | A collective of CTI professionals sharing intelligence, insights, and tracking threats. |
Website |
| Tracking Ransomware | Nonprofit watchdog monitoring ransomware actors and leaks. |
Website Bluesky |
| DFIR Report | Breakdowns of real-world attacks by incident responders. Excellent for staying on top of TTPs. | Website |
| MITRE ATT&CK | Org responsible for the CTI framework used globally to describe and categorize adversary behavior. The MITRE Org creates incredible resources and intelligence for the community. | Website |
Communities and Newsletters
| Name | Description | Link |
|---|---|---|
| LimaCharlie Community | Security-focused Slack group for detection engineers and CTI professionals. | Join here |
| CyberThreat.Cafe | Newsletter for CTI professionals and researchers. | Subscribe |
| Thomas Roccia - Security Break | Books, trainings, coaching, and a newsletter by a seasoned CTI practitioner! | Website |
| CYA Security | A community focused on cyber security awareness, simple language, and helpful answers to all of your cyber questions! They offer daily cyber news and tips, guidance for those breaking into cyber, and much, much more! | Website |