# TLCTC — Open Knowledge Format bundle

A rendered, agent-consumable view of the TLCTC (Top Level Cyber Threat Clusters) taxonomy,
generated from the canonical JSON schemas and documentation. See [README.md](/README.md).

- [attack-paths](/attack-paths/index.md) — Layer-3 incident attack-path analyses.
- [axioms](/axioms/index.md) — The ten framework axioms.
- [clusters](/clusters/index.md) — The ten cause-oriented threat clusters.
- [contexts](/contexts/index.md) — Boundary contexts and intra-system boundary types (Layer 2).
- [controls](/controls/index.md) — NIST CSF × TLCTC control matrix, ISO 27001 starter, effectiveness model, indicators.
- [glossary](/glossary/index.md) — Glossary of TLCTC terms.
- [mappings](/mappings/index.md) — Mappings to MITRE ATT&CK, MITRE CWE, and SigmaHQ.
- [rules](/rules/index.md) — Classification rules (R-*).
- [spheres](/spheres/index.md) — Responsibility spheres (Layer 2).

[manifest.json](/manifest.json) — machine-readable inventory of every document (path, type, title, tags).