HTTP/2 301 content-type: text/html; charset=UTF-8 access-control-allow-origin: * cache-control: private, no-cache, no-store, must-revalidate, max-age=0, s-maxage=0 content-security-policy: default-src 'none'; style-src 'self' 'unsafe-inline' https:; img-src 'self' https: data:; font-src 'self'; script-src 'self' 'unsafe-eval' https://*.first.org https://unpkg.com; form-action 'self'; media-src 'self' *.first.org; connect-src 'self' https://api.first.org; object-src 'none'; frame-src https:; frame-ancestors 'self' https://*.first.org; base-uri 'self' location: https://www.first.org/global/sigs/cti/ referrer-policy: same-origin server: nginx x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block accept-ranges: bytes date: Sun, 05 Oct 2025 05:00:54 GMT via: 1.1 varnish x-served-by: cache-bom-vanm7210087-BOM x-cache: MISS x-cache-hits: 0 x-timer: S1759640453.257783,VS0,VE1169 strict-transport-security: max-age=31557600 alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 120 HTTP/2 200 content-type: text/html; charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=3600, s-maxage=3600 content-encoding: gzip content-security-policy: default-src 'none'; style-src 'self' 'unsafe-inline' https:; img-src 'self' https: data:; font-src 'self'; script-src 'nonce-ZWKqUmMHRdFfetvoRJ6DLQ' 'strict-dynamic' 'self' 'unsafe-eval'; form-action 'self'; media-src 'self' *.first.org; connect-src 'self' *.first.org; object-src 'none'; frame-src https:; frame-ancestors 'self'; base-uri 'self' last-modified: Mon, 23 Jun 2025 03:58:12 GMT referrer-policy: same-origin server: nginx x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block accept-ranges: bytes age: 0 date: Sun, 05 Oct 2025 05:00:55 GMT via: 1.1 varnish x-served-by: cache-bom-vanm7210087-BOM x-cache: MISS x-cache-hits: 0 x-timer: S1759640454.445831,VS0,VE1017 vary: accept-encoding, Accept-Encoding strict-transport-security: max-age=31557600 alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 6650

• 
• Member Portal

• About FIRST
  • Mission Statement
  • Strategy Framework
  • History
  • Sustainable Development Goals
  • Organization
    • Board of Directors
    • Operations Team
      • Community & Capacity Building
      • Event Office
      • Executive Director
      • Infrastructure
      • Secretariat
    • Committees
      • Compensation Committee
      • Conference Program Committee
      • Membership Committee
      • Rules Committee
      • Standards Committee
    • Annual General Meeting
    • Annual Reports and Tax Filings
  • FIRST Policies
    • Anti-Corruption Policy
    • Antitrust Policy
    • Bylaws
    • Board duties
    • Bug Bounty Program
    • Code of Conduct
    • Conflict of Interest Policy
    • Document Record Retention and Destruction Policy
    • FIRST Press Policy
    • General Event Registration Refund Policy
    • Guidelines for Site Selection for all FIRST events
    • Identity & Logo Usage
    • Mailing List Policy
    • Media Policy
    • Privacy Policy
    • Registration Terms & Conditions
    • Services Terms of Use
    • Standards Policy
    • Statement on Diversity & Inclusion
    • Translation Policy
    • Travel Policy
    • Uniform IPR Policy
    • Whistleblower Protection Policy
  • Partnerships
    • Partners
    • Friends of FIRST
    • FIRST Supporters
    • FIRST Sponsors
  • Newsroom
    • What's New
    • Press Releases
    • In the News
    • Podcasts
      • FIRST Impressions Podcast
      • FIRSTCON Podcast
    • Newsletters
    • FIRST Press Policy
  • Procurement
  • Jobs
  • Contact
• Membership
  • Becoming a Member
    • Membership Process for Teams
    • Membership Process for Associates
    • Membership Process for Liaisons
    • Membership Fees
  • FIRST Teams
  • FIRST Associates
  • FIRST Liaisons
  • Members around the world
• Initiatives
  • Special Interest Groups (SIGs)
    • SIGs Framework
    • Academic Security SIG
    • AI Security SIG
    • Automation SIG
    • Cybersecurity Communications SIG
    • Common Vulnerability Scoring System (CVSS-SIG)
      • Calculator
      • Specification Document
      • User Guide
      • Examples
      • Frequently Asked Questions
      • CVSS v4.0 Documentation & Resources
        • CVSS v4.0 Calculator
        • CVSS v4.0 Specification Document
        • CVSS v4.0 User Guide
        • CVSS v4.0 Examples
        • CVSS v4.0 FAQ
      • CVSS v3.1 Archive
        • CVSS v3.1 Calculator
        • CVSS v3.1 Specification Document
        • CVSS v3.1 User Guide
        • CVSS v3.1 Examples
        • CVSS v3.1 Calculator Use & Design
      • CVSS v3.0 Archive
        • CVSS v3.0 Calculator
        • CVSS v3.0 Specification Document
        • CVSS v3.0 User Guide
        • CVSS v3.0 Examples
        • CVSS v3.0 Calculator Use & Design
      • CVSS v2 Archive
        • CVSS v2 Complete Documentation
        • CVSS v2 History
        • CVSS-SIG team
        • SIG Meetings
        • Frequently Asked Questions
        • CVSS Adopters
        • CVSS Links
      • CVSS v1 Archive
        • Introduction to CVSS
        • Frequently Asked Questions
        • Complete CVSS v1 Guide
      • JSON & XML Data Representations
      • CVSS On-Line Training Course
      • Identity & logo usage
    • CSIRT Framework Development SIG
    • Cyber Insurance SIG
      • Cyber Insurance SIG Webinars
    • Cyber Threat Intelligence SIG
      • Curriculum
        • Introduction
        • Introduction to CTI as a General topic
        • Methods and Methodology
        • Priority Intelligence Requirement (PIR)
        • Source Evaluation and Information Reliability
        • Machine and Human Analysis Techniques (and Intelligence Cycle)
        • Threat Modelling
        • Training
        • Standards
        • Glossary
        • Communicating Uncertainties in CTI Reporting
      • Webinars and Online Training
      • Building a CTI program and team
        • Program maturity stages
          • CTI Maturity model - Stage 1
          • CTI Maturity model - Stage 2
          • CTI Maturity model - Stage 3
        • Program Starter Kit
        • Resources and supporting materials
    • Detection Engineering & Threat Hunting SIG
    • Digital Safety SIG
    • DNS Abuse SIG
      • Stakeholder Advice
        • Detection
          • Cache Poisoning
          • Creation of Malicious Subdomains Under Dynamic DNS Providers
          • DGA Domains
          • DNS As a Vector for DoS
          • DNS Beacons - C2 Communication
          • DNS Rebinding
          • DNS Server Compromise
          • DNS Tunneling
          • DoS Against the DNS
          • Domain Name Compromise
          • Dynamic DNS (as obfuscation technique)
          • Fast Flux (as obfuscation technique)
          • Infiltration and exfiltration via the DNS
          • Lame Delegations
          • Local Resolver Hijacking
          • Malicious registration of (effective) second level domains
          • On-path DNS Attack
          • Stub Resolver Hijacking
      • Code of Conduct & Other Policies
      • Examples of DNS Abuse
    • Ethics SIG
      • Ethics for Incident Response Teams
    • Exploit Prediction Scoring System (EPSS)
      • The EPSS Model
      • Data and Statistics
      • User Guide
      • EPSS Research and Presentations
      • Frequently Asked Questions
      • Who is using EPSS?
      • Open-source EPSS Tools
      • API
      • Related Exploit Research
      • Blog
        • Understanding EPSS Probabilities and Percentiles
        • Log4Shell Use Case
        • Estimating CVSS v3 Scores for 100,000 Older Vulnerabilities
      • Data Partners
    • FIRST Multi-Stakeholder Ransomware SIG
    • Human Factors in Security SIG
    • Industrial Control Systems SIG (ICS-SIG)
    • Information Exchange Policy SIG (IEP-SIG)
    • Information Sharing SIG
      • Malware Information Sharing Platform
    • Law Enforcement SIG
    • Malware Analysis SIG
      • Malware Analysis Framework
      • Malware Analysis Tools
    • Metrics SIG
      • Metrics SIG Webinars
    • NETSEC SIG
    • Public Policy SIG
    • PSIRT SIG
    • Red Team SIG
    • Security Lounge SIG
    • Security Operations Center SIG
    • Threat Intel Coalition SIG
      • Membership Requirements and Veto Rules
    • Traffic Light Protocol (TLP-SIG)
    • Transportation and Mobility SIG
    • Vulnerability Coordination
      • Multi-Party Vulnerability Coordination and Disclosure
      • Guidelines and Practices for Multi-Party Vulnerability Coordination and Disclosure
    • Vulnerability Reporting and Data eXchange SIG (VRDX-SIG)
      • Vulnerability Database Catalog
    • Women of FIRST
  • CCB Initiatives
  • FIRST CORE
    • Sponsorship Opportunities
  • Internet Governance
  • IR Database
  • Fellowship Program
    • Application Form
  • Mentorship Program
  • IR Hall of Fame
    • Hall of Fame Inductees
  • Victim Notification
  • Volunteers at FIRST
    • FIRST Volunteers
  • Previous Activities
    • Best Practices Contest
• Standards & Publications
  • Standards
    • Common Vulnerability Scoring System (CVSS-SIG)
    • Traffic Light Protocol (TLP)
      • TLP Use Cases
    • Service Frameworks
      • CSIRT Services Framework
      • PSIRT Services Framework
    • Information Exchange Policy (IEP)
      • IEP 2.0 Framework
      • IEP 2.0 JSON Specification
      • Standard IEP Policies
        • IEP TLP Policy File
        • IEP Unknown Policy File
      • IEP 1.0 Archive
    • Passive DNS Exchange
    • Exploit Prediction Scoring System (EPSS)
  • Publications
• Events
• Education
  • FIRST Training
    • Training Courses
    • FIRST Trainers
• Blog

JoinDetails about FIRST membership and joining as a full member or liaison. LearnTraining and workshop opportunities, and details about the FIRST learning platform. ParticipateRead about upcoming events, SIGs, and know what is going on. CommunityCommunity and Capacity Building.