A practical hub for threat intelligence work

threat-intelligence.eu is an open, community-driven resource that helps analysts quickly find and apply:

• Open standards and exchange formats used to share cyber threat intelligence in interoperable ways.
• Methodologies and analytical frameworks that improve rigor, reduce bias, and strengthen confidence in judgments.
• Recommended readings to build long-term intelligence tradecraft.

Whether you are building a CTI program, improving day-to-day analysis, or aligning your workflows with open ecosystems, this site is designed to give you curated references in one place.

Explore the core sections

• Standards — Key specifications and formats such as MISP standards, IODEF, IDMEF, STIX, Sigma, YARA, and GENE.
• Methodologies — Structured approaches for intelligence analysis, from cognitive bias and estimative language to intrusion and attack models.
• Recommended readings — Foundational books and papers that support high-quality threat analysis.
• About — Project background, scope, and contribution path.

Why this matters

Threat intelligence is most effective when it is both technically interoperable and analytically sound. Standards make sharing actionable information possible across tools and teams, while methodologies and structured reasoning help analysts make better decisions under uncertainty.

This project emphasizes open standards, practical applicability, and links to resources that can be used directly in operational environments.