Intelligence-Driven Incident Response: Scott J. Roberts and Rebekah Brown
Intelligence-Driven Incident Response: Outwitting the Adversary - 2017
This book is included in both my top Cyber Threat Intelligence (CTI), and Incident Response (IR) book lists. All too often Incident Responders are flying blind in knowing what to look for and whether they have fully remediated an incident. This book concisely illustrates the importance of CTI as a driver for better IR. The book discusses a model called F3EAD Find, Fix, Finish, Exploit, Analyze, and Disseminate as the cornerstone of this process.
Practical Threat Intelligence and Data-Driven Threat Hunting - Valentina Costa-Gazcó
Practical Threat Intelligence and Data-Driven Threat Hunting: A hands-on guide to threat hunting with the ATT&CK™ Framework -2021
This book is included in both my top Cyber Threat Intelligence (CTI), and Incident Response (IR) book lists. his book outlines process details with examples Threat Hunting (TH). Starting with CTI to best understand your adversaries and engaging in TH activities. A real-world example of Qasar RAT is used.
Structured Analytic Techniques for Intelligence Analysis - R. Heuer, R. Pherson
Structured Analytic Techniques for Intelligence Analysis - 2010
This book is presents the intelligence analysis process and several intelligence analysis techniques in short workbook style. One of the key intelligence analysis techniques discussed is called the Analysis of Competing Hypothesis (ACH).
Psychology of Intelligence Analysis - Richards J. Heuer Jr., Scott R. Pollak
Psychology of Intelligence Analysis - 2007 (Audio available)
Within any type of analysis and decision making there exists a wide range of issues around estimation, biases, etc. This book tackles many of those key topics in an understandable way.
The Threat Intelligence Handbook: Recorded Future, Chris Pace, et al.
The Threat Intelligence Handbook: A Practical Guide for Security Teams to Unlocking the Power of Intelligence (Audio available)
Cyber Threat Intelligence (CTI) is such a critical component of cyber security a CTI book had to be included in this list. This book was published by Recorded Future, a leader in CTI. Also, checkout Recorded Future's podcast, CyberWire Daily.
Analyzing Intelligence: Origins, Obstacles, and Innovations - 2008
An interesting book where each chapter is written by an expert intelligence analysis providing an ideas and insights to particular intelligence analysis issues.
This is just a list of a few CTI books. Katie Nickels has published a more extensive list of CTI training resources in the blog article, 'A Cyber Threat Intelligence Self-Study Plan: Part 1'.
https://medium.com/katies-five-cents/a-cyber-threat-intelligence-self-study-plan-part-1-968b5a8daf9a
Comments