Cyber Threat Intelligence Glossary

CTI Knowledge Base

Your comprehensive reference for cyber threat intelligence terminology. Explore definitions of malware families, APT groups, attack techniques, and security concepts.

Browse Alphabetically

All A B C 3 D 3 E F G H I J K L 1 M 1 N O 1 P 2 Q R 1 S 2 T 6 U 1 V W 1 X Y 1 Z

Filter: All Categories Attack Techniques (3) Compliance & Standards (2) Defense & Detection (7) General (12) Threats (2) Tools & Frameworks (1)

Showing 4 entries starting with I

Clear filters

Defense & Detection 15

ICS/OT Threat Intelligence: Protecting the Industrial Edge

CTI for Industrial Control Systems (ICS) and OT. Understand the Purdue Model, specialized protocols (Modbus, DNP3), and threats targeting critical infrastructure.

I Read Definition

Defense & Detection 30

Infrastructure Tracking: Fingerprinting with JA3 and JARM

Move beyond IP addresses. Learn how to track threat actors using SSL/TLS fingerprinting techniques like JA3, JA3S, and JARM to identify C2 servers.

I Read Definition

Threats 3

Initial Access Brokers (IAB): The Middlemen of Cybercrime

Initial Access Brokers (IABs) are specialized cybercriminals who breach corporate networks but do not monetize the intrusion themselves. Instead, they sell the "access" (e.g., vali...

I Read Definition

General 20

IOCs vs. TTPs: The Pyramid of Pain Explained

A mature CTI program moves beyond blocking IPs (Tactical) and focuses on hunting TTPs (Operational).

I Read Definition

CTI Knowledge Base

Browse Alphabetically

ICS/OT Threat Intelligence: Protecting the Industrial Edge

Infrastructure Tracking: Fingerprinting with JA3 and JARM

Initial Access Brokers (IAB): The Middlemen of Cybercrime

IOCs vs. TTPs: The Pyramid of Pain Explained

Stay Updated