This presentation shares a first-hand, practitioner’s journey into open source threat intelligence at ASRG, approached from a true beginner’s perspective. Without a background in software development or formal intelligence analysis, the challenge was to build publicly available intelligence feeds that increase transparency and help the automotive industry better understand product-relevant threats. The talk covers early tooling decisions, lessons learned from using both commercial and open source platforms, and the limitations encountered when applying IT-centric intelligence models to product and vehicle security use cases. The session then focuses on ASRG’s migration to OpenCTI and the evolution of enrichment pipelines built using no-code and low-code solutions. Attendees will learn how automation platforms, public dashboards, and relationship-driven data enabled scalable enrichment aligned with SAE/ISO-21434 needs, while also hearing candid lessons from