Cybersecurity resources provide the industry with a centralized source of trusted information. If you have any questions, especially about our membership process, contact us.
Download and share these materials that tell the story of CTA, including CTA’s Joint Analysis reports, which focus on specific threats and campaign activity.
CTA Solutions Fact Sheet
CTA in Focus (September 2020)
CTA in Focus (June 2020)
CTA Value Proposition Slick Sheet
CTA in Focus (March 2020)
CTA 2020 Olympics Threat Assessment Report
CTA members routinely provide other members with access to and review of blogs and intelligence reports describing malicious cyber activity. By sharing research on significant issues, CTA members leverage their data, analysis, and cybersecurity products to expose malicious activity, prevent additional harm, and mitigate any of the activity’s effects as early and as effectively as possible. Since May 2018, CTA members have shared over 200 blogs and intelligence reports with each other.
Use the search function to search by CTA member company name or research title. Results can also be filtered by date of publication.
Cybersecurity Resources and Working From Home: Tips & Resources
Coalition of Nonprofits Join Together to Help Businesses Secure Remote Workforce
CTA Partnerships FAQ
Crosswalk from NSA Cyber Threat Framework to the MITRE ATT&CK Framework
Next Steps in Playbook Driven Cyber Security
Aspen Cybersecurity Group: An Operational Collaboration Framework
2018 CMO Cybersecurity Survey Key Findings
Building a National Cybersecurity Strategy: Voluntary, Flexible Frameworks
Cybersecurity Framework References, FAQ, etc.
Information Sharing and Analysis Organizations
May 2017 U.S. Government Cyber Executive Order
Federal Funding Recs for R&D Relating to Improving Computer Code Security
NIST Computer Security Incident Handling Guide
Adversary Playbooks are an attempt to capture the complete collection of tools, techniques, and procedures that adversaries use to achieve their goals, arrayed in a logical sequence using the Lockheed Martin Cyber Kill Chain. If the cybersecurity community and network defenders have access to these playbooks, they can make their defensive actions more effective and impose increased costs on our adversaries. The Cyber Threat Alliance (CTA) is committed to sharing actionable intelligence that can be used to create Adversary Playbooks. Since our cyber adversaries adapt very rapidly, CTA also automates the sharing and updating of this intelligence.
This page serves as a resource for the cybersecurity community with useful tools for creating Adversary Playbooks and links to the Playbooks created by our members. If you have any questions or feedback, please contact us at admin@cyberthreatalliance.
Use the search function to find playbooks by CTA member author, adversary group, or threat actor.