Andrey Pautov Medium Articles

This page tracks articles from medium.com/@1200km that are relevant to this repository. These are treated as authored CTI or methodology sources. For production blocking, incident attribution, or executive claims, analysts SHOULD trace back to the primary sources cited inside each article.

Included Articles

Source ID	Article	Relevance
SRC-AP-HANDALA	CTI Research: Handala Hack Group aka Handala Hack Team	Direct actor profile for an Israel-focused influence-enabled intrusion persona and MOIS-linked cluster mapping.
SRC-AP-MUDDYWATER	CTI Research: MuddyWater/Seedworm Mango Sandstorm	Direct actor profile for an Iran MOIS-linked actor relevant to Israeli and regional public-sector defense.
SRC-AP-MAGENCELL	CTI-Led Defensive Strategy for a Cellular Provider	Fictional Israeli telecom case study useful for public-sector adjacent telecom, identity, cloud, and critical-service threat modeling.
SRC-AP-KENT-CTI	Applying Sherman Kent's Analytic Discipline to CTI	Analytic-tradecraft reference for estimative language and evidence discipline.
SRC-AP-AI-OFFOPS	AI in Offensive Operations: How Threat Actors Use Artificial Intelligence	Current threat landscape reference for AI-assisted reconnaissance, phishing, malware support, and state-linked misuse.
SRC-AP-CTI-KILLCHAIN	CTI Kill Chain: An Analyst Guide With Real-World Evidence	Workflow reference for converting evidence into defensive decisions.
SRC-AP-CD-AI-CTI	Customer-Driven AI CTI Project	Methodology index for CTI-to-detection project execution.

Exclusion Rules

Some articles on the same profile are intentionally not included here:

• Offensive lab playbooks are excluded unless rewritten as defensive detection references.
• Sector case studies outside Israel-government relevance are excluded unless they add reusable methodology or defensive telemetry logic.
• Actor reports with no plausible Israel-government, regional public-sector, supplier, telecom, OT, or influence-operation relevance are excluded from the initial source register.