Completed environment and regulatory framework

docs/bibliography/bibliography.bib

@@ -977,6 +977,37 @@ Userland Linux Rootkits},
 	institution={The BlackBerry Research & Intelligence Team},
 	date={2022-06-09},
 	url={https://blogs.blackberry.com/en/2022/06/symbiote-a-new-nearly-impossible-to-detect-linux-threat}
+},
+
+@online{pentest_redteam,
+	title={Penetration Test vs. Red Team Assessment: The Age Old Debate of Pirates vs. Ninjas Continues},
+	date={2016-06-23},
+	author={Kirk Hayes},
+	url={https://www.rapid7.com/blog/post/2016/06/23/penetration-testing-vs-red-teaming-the-age-old-debate-of-pirates-vs-ninja-continues/}
+},
+
+@online{nist_cyber,
+	title={Framework for Improving Critical Infrastructure Cybersecurity},
+	date={2018-04-16},
+	institution={National Institute of Standards and Technology},
+	url={https://nvlpubs.nist.gov/nistpubs/CSWP/NIST.CSWP.04162018.pdf}
+},
+
+@online{mitre_blog,
+	title={ATT\&CK 101},
+	author={Blake Strom},
+	date={2018-08-21},
+	url={https://medium.com/mitre-attack/att-ck-101-17074d3bc62}
+},
+
+@online{mitre_blog_2,
+	title={What Is the MITRE ATT\&CK Framework?},
+	url={https://www.trellix.com/en-us/security-awareness/cybersecurity/what-is-mitre-attack-framework.html}
+},
+
+@online{mitre_matrix_linux,
+	title={ATT\&CK Matrix for Enterprise},
+	url={https://attack.mitre.org/matrices/enterprise/linux/}
 }