From f5260b56f4905906107bfab2464524ef24783476 Mon Sep 17 00:00:00 2001
From: Herman Slatman <hermanslatman@hotmail.com>
Date: Fri, 8 Apr 2016 11:16:03 +0200
Subject: [PATCH 1/4] Added Joint Publication 2-0: Joint Intelligence

---
 README.md | 8 ++++++++
 1 file changed, 8 insertions(+)
diff --git a/README.md b/README.md
index 7ed64dc..ad462e1 100644
--- a/README.md
+++ b/README.md
@@ -649,6 +649,14 @@ All kinds of reading material about Threat Intelligence. Includes (scientific) r
             The intrusion kill chain as presented in this paper provides one with a structured approach to intrusion analysis, indicator extraction and performing defensive actions.
         </td>
     </tr>
+    <tr>
+        <td>
+            <a href="http://www.dtic.mil/doctrine/new_pubs/jp2_0.pdf" target="_blank">Joint Publication 2-0: Joint Intelligence</a>
+        </td>
+        <td>
+            This publication by the U.S army forms the core of joint intelligence doctrine and lays the foundation to fully integrate operations, plans and intelligence into a cohesive team. The concepts presented are applicable to (Cyber) Threat Intelligence too.
+        </td>
+    </tr>
     <tr>
         <td>
             <a href="http://download.microsoft.com/download/8/0/1/801358EC-2A0A-4675-A2E7-96C2E7B93E73/Framework_for_Cybersecurity_Info_Sharing.pdf" target="_blank">Microsoft Research Paper</a>

From 6414a619e834042a297d8c6f9bc37e757cff31ce Mon Sep 17 00:00:00 2001
From: Herman Slatman <hermanslatman@hotmail.com>
Date: Fri, 8 Apr 2016 11:18:21 +0200
Subject: [PATCH 2/4] Fix link for OpenTAXII

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index ad462e1..a984f9a 100644
--- a/README.md
+++ b/README.md
@@ -303,7 +303,7 @@ Frameworks, platforms and services for collecting, analyzing, creating and shari
     </tr>
     <tr>
         <td>
-            <a href="https://github.com/Intelworks/OpenTAXII" target="_blank">OpenTAXII</a>
+            <a href="https://github.com/EclecticIQ/OpenTAXII" target="_blank">OpenTAXII</a>
         </td>
         <td>
             OpenTAXII is a robust Python implementation of TAXII Services that delivers a rich feature set and a friendly Pythonic API built on top of a well designed application.

From 20a2eb43c974f1963dbfd92a2de46f7cfcfa632b Mon Sep 17 00:00:00 2001
From: Herman Slatman <hermanslatman@hotmail.com>
Date: Fri, 8 Apr 2016 11:18:49 +0200
Subject: [PATCH 3/4] Fix link for cabby

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index a984f9a..8e3b380 100644
--- a/README.md
+++ b/README.md
@@ -384,7 +384,7 @@ All kinds of tools for parsing, creating and editing Threat Intelligence. Mostly
 <table>
     <tr>
         <td>
-            <a href="https://github.com/Intelworks/cabby" target="_blank">cabby</a>
+            <a href="https://github.com/EclecticIQ/cabby" target="_blank">cabby</a>
         </td>
         <td>
             A simple Python library for interacting with TAXII servers.

From 4601397fcba1c6974f148ed9f6ac0d8fbb8dbe2b Mon Sep 17 00:00:00 2001
From: Herman Slatman <hermanslatman@hotmail.com>
Date: Fri, 8 Apr 2016 11:21:37 +0200
Subject: [PATCH 4/4] Fix https links

---
 README.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 8e3b380..1a47e1d 100644
--- a/README.md
+++ b/README.md
@@ -165,7 +165,7 @@ Standardized formats for sharing Threat Intelligence (mostly IOCs).
     </tr>
     <tr>
         <td>
-            <a href="http://tools.ietf.org/html/rfc5070" target="_blank">IODEF (RFC5070)</a>
+            <a href="https://tools.ietf.org/html/rfc5070" target="_blank">IODEF (RFC5070)</a>
         </td>
         <td>
             The Incident Object Description Exchange Format (IODEF) defines a data representation that provides a framework for sharing information commonly exchanged by Computer Security Incident Response Teams (CSIRTs) about computer security incidents.
@@ -173,7 +173,7 @@ Standardized formats for sharing Threat Intelligence (mostly IOCs).
     </tr>
     <tr>
         <td>
-            <a href="http://tools.ietf.org/html/rfc4765" target="_blank">IDMEF (RFC4765)</a>
+            <a href="https://tools.ietf.org/html/rfc4765" target="_blank">IDMEF (RFC4765)</a>
         </td>
         <td>
             <i>Experimental</i> - The purpose of the Intrusion Detection Message Exchange Format (IDMEF) is to define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems and to the management systems that may need to interact with them.

- cabby + cabby	A simple Python library for interacting with TAXII servers. From 4601397fcba1c6974f148ed9f6ac0d8fbb8dbe2b Mon Sep 17 00:00:00 2001 From: Herman Slatman Date: Fri, 8 Apr 2016 11:21:37 +0200 Subject: [PATCH 4/4] Fix https links --- README.md \| 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 8e3b380..1a47e1d 100644 --- a/README.md +++ b/README.md @@ -165,7 +165,7 @@ Standardized formats for sharing Threat Intelligence (mostly IOCs).
- IODEF (RFC5070) + IODEF (RFC5070)	The Incident Object Description Exchange Format (IODEF) defines a data representation that provides a framework for sharing information commonly exchanged by Computer Security Incident Response Teams (CSIRTs) about computer security incidents. @@ -173,7 +173,7 @@ Standardized formats for sharing Threat Intelligence (mostly IOCs).
- IDMEF (RFC4765) + IDMEF (RFC4765)	Experimental - The purpose of the Intrusion Detection Message Exchange Format (IDMEF) is to define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems and to the management systems that may need to interact with them.