data VS APTnotes

You are going to step on many toes to get that far including your own government. For learning about how state actors penetrate state network without being caught, read more on APTs

>with case studies and getting as niche on specific things as possible.

Then definitely you can touch on APT marketplace, unlike the usual zeroday ones, those are -as the name implies, advanced, and mostly are state sponsored, you can find some of these in this sheet [1], or other sources [2] or older ones [3]. Now, for other zero day exploits, you can dig into your typical threat intelligence feeds to have an idea, some of these are daily updated [4] [5] [6] among a lot more of other resources, there are also underground databases for zero day and even APT updated as of yesterday, and also online marketplaces for those where you can buy/sell compromised RDP servers / webmail / cPanels / etc., or even services like smtp-sms for phishing among others, unfortunately, I can’t and won’t list any of these in here for obvious reasons, however, if you dig a little deeper definitely you will find something, just don’t use the usual search engines and normal channels, and get the usual security precautions like sandbox/vpns/etc. when access any of these sites, preferably in an isolated OS too.

And thanks, not expert enough for sure!

[1] https://docs.google.com/spreadsheets/u/1/d/1H9_xaxQHpWaa4O_S...

[2] https://gist.github.com/Neo23x0/c4f40629342769ad0a8f3980942e...

[3] https://github.com/kbandla/APTnotes

[4] https://bazaar.abuse.ch/browse/

[5] https://www.exploitalert.com/browse-exploit.html

[6] https://threatfox.abuse.ch/browse/

I trained up this repo in my privateGPT - https://github.com/kbandla/APTnotes

APT Notes