- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
select a course
Las Vegas, NV - October 1 - 9, 2006
It's very dynamic and I will be able to apply what I learned directly into my area of work.
-Wagner Nascimento, eBay, Inc.
SCADA and Process Control Security Summit
The World's Leading Control System Security Training Event
The World's Leading Control System Security Training Event
SANS @Night
Windows Log Management that Works!
- David Hoelzer, Cyber-Defense.org
- Wednesday, October 4th: 6:00pm - 7:00pm
This presentation covers a brand new piece of open source software that will let you answer any of your Windows log questions by aggregating all of your Windows logs into one place where you can interactively query them or set up dynamic alerting to let you know when something's up.
Oracle Security
- Paul Wright, NGS Software
- Thursday, October 5th: 6:00pm - 7:00pm
An accurate method is required to allow an Auditor to ascertain vulnerability to an exploit without actually running the exploit code itself. Traditionally this has been by ascertaining the DB Version or more precisely the Patch-Level of the DB and then correlating that to the vulnerabilities pertinent to that version. The problem with this is that the reported Version/Patch-level may well be incorrect causing false positives. Deducing vulnerability to a forensic level of accuracy is required in mission critical environments. Furthermore being able to deduce what historical time periods the server was vulnerable for and what mitigating actions the DBA took to counter the vulnerabilities over this time period would be of great use when calculating risk, compliancy and legal liability. To achieve the above requires Computer Forensics skills applied to the Oracle database environment as will be shown.
Malware Analysis: The Basics
- Lorna Hutcheson, SANS Internet Storm Center
- Thursday, October 5th: 7:00pm - 9:00pm
Have you have ever found a suspicious file on your system and wondered what's it doing but didn't know how to find out? Then this presentation is for you! We will be covering the basics of how to conduct malware analysis. Some of the areas that will be discussed are: setting up a test environment, safety while doing analysis, tools used and how to use them and behavioral analysis. You will see different pieces of malware in action and how to use these basic skills to start to understand them. Prepare to enter the fascinating world of malware analysis.