Selected official cybersecurity resources and public reference links.
NIS2 Directive
EU directive focused on improving cybersecurity across critical and important sectors.
It defines security and reporting obligations for organizations within the European Union.
NIST Cybersecurity Framework
A practical framework for identifying, protecting, detecting, responding to, and recovering from cybersecurity risks.
It is widely used for risk management and security program development.
ISO/IEC 27001
International standard for establishing, implementing, and maintaining an Information Security Management System.
It helps organizations manage security risks in a structured and auditable way.
BSI IT-Grundschutz
German cybersecurity framework published by the Federal Office for Information Security.
It provides practical guidance, controls, and baseline security recommendations for organizations.
ENISA
The European Union Agency for Cybersecurity.
ENISA provides reports, guidance, threat landscape analysis, and recommendations for improving cybersecurity across Europe.
MITRE ATT&CK
A knowledge base of real-world attacker tactics, techniques, and procedures.
It is useful for threat analysis, SOC work, detection engineering, and incident response.
OWASP Top 10
A widely recognized list of the most critical web application security risks.
It helps developers and security teams understand and reduce common web vulnerabilities.