Threat Intelligence and Sources Flashcards

1
Q

Timeliness

A

Property of an intelligence source that ensures it is up-to-date

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Relevancy

A

Property of an intelligence source that ensures it matches the use cases intended for it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Accuracy

A

Property of an intelligence source that ensures it produces effective results.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Confidence Levels

A

Property of an intelligence source that ensures it produces qualified statements about reliability.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Proprietary

A

Threat intelligence is very widely provided as a commercial service offering, where access to updates and research is subject to a subscription fee.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Closed-Source

A

Data that is derived from the provider’s own research and analysis efforts, such as data from honeynets that they operate, plus information mined from its customers’ systems, suitably anonymized

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Open-Source

A
Data that is available to use without subscription, which may include threat feeds similar to the commercial providers and may contain reputation lists and malware signature databases:
US-CERT
UK's NCSC
AT&T Security (OTX)
MISP
VirusTotal
Spamhaus
SANS ISC Suspicious Domains
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Open-Source Intelligence (OSINT)

A

Methods of obtaining information about a person or organization through public records, websites, and social media

How well did you know this?
1
Not at all
2
3
4
5
Perfectly