> ## Documentation Index
> Fetch the complete documentation index at: https://threatbasis.io/llms.txt
> Use this file to discover all available pages before exploring further.

# ThreatBasis - Security Engineering & Security Operations Knowledge Base

> The comprehensive knowledge base for security engineering, security operations, and AI security. Expert guidance on SOC operations, cloud security, DevSecOps, incident response, threat hunting, and LLM security for practitioners.

<img className="block dark:hidden" src="https://mintcdn.com/threatbasis/2DlAgYrU4BCl4h5H/images/hero-light.webp?fit=max&auto=format&n=2DlAgYrU4BCl4h5H&q=85&s=a6efc270f3cef8786fe3efc4a54f0233" alt="ThreatBasis Hero Light" width="2602" height="1736" data-path="images/hero-light.webp" />

<img className="hidden dark:block" src="https://mintcdn.com/threatbasis/2DlAgYrU4BCl4h5H/images/hero-light.webp?fit=max&auto=format&n=2DlAgYrU4BCl4h5H&q=85&s=a6efc270f3cef8786fe3efc4a54f0233" alt="ThreatBasis Hero Dark" width="2602" height="1736" data-path="images/hero-light.webp" />

## Your Complete Security Engineering & Security Operations Knowledge Base

ThreatBasis is a comprehensive knowledge base for security engineers, SOC analysts, incident responders, architects, and practitioners. From foundational security principles to advanced topics in cloud security, DevSecOps, and security operations, we provide content to elevate your security practice.

<CardGroup cols={3}>
  <Card title="Security Knowledge Base" icon="book-open" href="/knowledge/security-engineering-principles">
    Comprehensive security engineering knowledge across 14 major domains
  </Card>

  <Card title="AI Knowledge Base" icon="brain" href="/ai-knowledge/introduction">
    AI and LLM knowledge for security engineering and operations
  </Card>

  <Card title="API Reference" icon="code-branch" href="/api-reference/introduction">
    API documentation (coming soon)
  </Card>
</CardGroup>

## Core Knowledge Domains

Explore our structured security engineering knowledge base, designed for senior practitioners and security leaders.

<CardGroup cols={3}>
  <Card title="Security Foundations" icon="shield-check" href="/knowledge/security-engineering-principles">
    Core principles, risk assessment, frameworks, governance, and
    defense-in-depth strategies
  </Card>

  <Card title="Application Security" icon="code" href="/knowledge/owasp-top-10-web-vulnerabilities">
    OWASP Top 10, secure coding, API security, mobile security, and testing
    methodologies
  </Card>

  <Card title="Infrastructure & Network" icon="network-wired" href="/knowledge/network-security-fundamentals">
    Network security, hardening, zero trust, containers, Kubernetes, and
    endpoint protection
  </Card>
</CardGroup>

<CardGroup cols={3}>
  <Card title="Cloud Security" icon="cloud" href="/knowledge/cloud-security-fundamentals">
    AWS, Azure, GCP security, cloud-native architectures, multi-cloud, and
    compliance
  </Card>

  <Card title="Security Architecture" icon="sitemap" href="/knowledge/threat-modeling-methodologies">
    Threat modeling, architecture patterns, enterprise security, and resilience
    engineering
  </Card>

  <Card title="Security Operations" icon="chart-line" href="/knowledge/security-operations-center">
    SOC operations, SIEM, incident response, threat hunting, and vulnerability
    management
  </Card>
</CardGroup>

## Advanced Topics

<CardGroup cols={3}>
  <Card title="DevSecOps & SDLC" icon="infinity" href="/knowledge/secure-software-development-lifecycle">
    Pipeline security, IaC security, supply chain security, and security
    champions programs
  </Card>

  <Card title="Cryptography & Data" icon="key" href="/knowledge/key-management">
    Key management, encryption, DLP, privacy engineering, and post-quantum
    cryptography
  </Card>

  <Card title="Compliance & Risk" icon="clipboard-check" href="/knowledge/regulatory-compliance-frameworks">
    Regulatory frameworks, risk management, auditing, and third-party risk
  </Card>
</CardGroup>

## Specialized Areas

<CardGroup cols={2}>
  <Card title="Emerging Technologies" icon="microchip" href="/knowledge/ot-ics-security">
    OT/ICS security, IoT, red/blue/purple teaming, deception tech, and attack
    surface management
  </Card>

  <Card title="Security Leadership" icon="users" href="/knowledge/security-program-management">
    Program management, team building, security culture, and stakeholder
    communication
  </Card>
</CardGroup>

## Additional Resources

<CardGroup cols={3}>
  <Card title="Security Tooling" icon="wrench" href="/knowledge/security-tooling-strategy">
    Tooling strategy, internal platforms, policy-as-code, and security telemetry
  </Card>

  <Card title="Performance & Scale" icon="gauge-high" href="/knowledge/performance-engineering-for-security-tools">
    Performance engineering, scaling SOC operations, and cost optimization
  </Card>

  <Card title="Threat Intelligence" icon="radar" href="/knowledge/apt">
    APT groups, TTPs, and advanced threat detection techniques
  </Card>
</CardGroup>

<Note>
  ThreatBasis provides information across all major domains of security
  engineering. Content is continuously updated with current best practices,
  emerging technologies, and real-world implementation guidance.
</Note>

## Get Started

<CardGroup cols={2}>
  <Card title="Browse Knowledge Base" icon="magnifying-glass" href="/knowledge/security-engineering-principles">
    Start with security engineering principles or explore any of the 14
    knowledge domains
  </Card>

  <Card title="Join Community" icon="users" href="https://discord.gg/HAVyDtUunu">
    Connect with security professionals and contribute to the knowledge base
  </Card>
</CardGroup>