威胁情报

网络威胁情报是基于知识，技能和经验的信息，涉及网络和物理威胁以及威胁行为者的发生和评估，旨在帮助缓解网络空间中发生的潜在攻击和有害事件。网络威胁情报来源包括开源情报，社交媒体情报，人类情报，技术情报，设备日志文件，取证获得的数据或来自Internet流量的情报以及从深层和暗黑Web派生的数据。

A curated list of awesome Threat Intelligence resources

A concise definition of Threat Intelligence: evidence-based knowledge, including context, mechanisms, indicators, implications and actionable advice, about an existing or emerging menace or hazard to assets that can be used to inform decisions regarding the subject’s response to that menace or hazard.