Overview
Learning Outcomes:
In this module, you will complete the following exercises:
- Exercise 1 – Actors and Threats
- Exercise 2 – Threat Vectors
- Exercise 3 – Threat Intelligence Sources
- Exercise 4 – Research Sources
- Exercise 5 – Threat Map
- Exercise 6 – Vulnerability Databases
After completing this module, you should be able to:
- Use threat map.
- Use the Common Vulnerability Scoring System (CVSS).
After completing this module, you should have further knowledge of:
- Actors, their attributes, and threats
- Direct access
- Wireless
- Supply chain
- Social media
- Removable media
- Cloud
- Open-source intelligence (OSINT)
- Closed/proprietary
- Vulnerability databases
- Public/private information sharing centers
- Dark web
- Indicators of compromise (IoC)
- Automated Indicator Sharing (AIS)
- Predictive analysis
- File/Code Repositories
- Vendor websites
- Vulnerability feeds
- Conferences
- Local industry groups
- Social media
- Threat feeds
- Adversary Tactics, Techniques, and Procedures (TTP)
- MITRE ATT&CK
Exam Objectives:
The following exam objective is covered in this lab:
1.5 Explain different threat actors, vectors, and intelligence sources.
- Actors and threats
- Attributes of actors
- Vectors
- Threat intelligence sources
Note: Our main focus is to cover the practical, hands-on aspects of the exam objectives. We recommend referring to course material or a search engine to research theoretical topics in more detail.