- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
Last 25 papers added to the Reading Room
Last Updated Jul 03, 2008
Network Security Model
Josh Backfield
Category: Security Modeling
Posted: July 3, 2008
Detecting Hydan: Statistical Methods For Classifying The Use Of Hydan Based Stegonagraphy In Executable Files
Craig Wright
Category: Steganography
Posted: July 3, 2008
There's a hole in my infrastructure? The road to PCI Compliance
Jonathan Chaitow
Category: Security Policy Issues
Posted: July 3, 2008
A Forensic Primer for Usenet Evidence
Mark Lachniet
Category: Forensics
Posted: June 25, 2008
Preparing to face new vulnerabilities
Jacelyn Faucher
Category: Security Basics
Posted: June 25, 2008
Host Intrusion Prevention Systems and Beyond
Jonathan Chee
Category: Intrusion Prevention
Posted: June 24, 2008
Security Policy for the use of handheld devices in corporate environments
Nicolas Guerin
Category: PDAs and Other Mobile Devices
Posted: June 24, 2008
An approach to the ultimate in-depth security event management framework
Nicolas Pachis
Category: Incident Handling
Posted: June 23, 2008
Mining gold... A primer on incident handling and response
Stacy Jordan
Category: Incident Handling
Posted: June 23, 2008
Programming Wireless Security
Robin Wood
Category: Wireless Access
Posted: June 18, 2008
Auditing Nokia Firewall
Richard Sokal
Category: Auditing & Assessment
Posted: June 18, 2008
Creating and Maintaining Policies for Working with Law Enforcement
Tim Proffitt
Category: Incident Handling
Posted: May 21, 2008
Ex-Tip: An Extensible Timeline Analysis Framework in Perl
Michael Cloppert
Category: Forensics
Posted: May 21, 2008
Incident Handling for SMEs (Small to Medium Enterprises)
Terry Morreale
Category: Incident Handling
Posted: May 20, 2008
Making Security Awareness Efforts Work for You
Rebecca Fowler
Category: Security Awareness
Posted: May 20, 2008
Network IDS & IPS Deployment Strategies
Nicholas Pappas
Category: Intrusion Detection
Posted: April 11, 2008
Creating a Comprehensive Vulnerability Assessment Program for a Large Company Using QualysGuard
Tim Proffitt
Category: Auditing & Assessment
Posted: March 31, 2008
Effectiveness of Antivirus in Detecting Metasploit Payloads
Mark Baggett
Category: Case Studies
Posted: March 28, 2008
Advanced Threat Analytics for Incident Response
Darren Spruell
Category: Security Modeling
Posted: March 28, 2008
Challenges of Managing an Intrusion Detection System (IDS) in the Enterprise
Russell Meyer
Category: Intrusion Detection
Posted: March 28, 2008
Session Hijacking in Windows Networks
Paul Jess
Category: Windows Issues
Posted: March 28, 2008
Threat Analysis of Allowing Employee Internet Access
Mason Pokladnik
Category: Threats/Vulnerabilities
Posted: March 28, 2008
Breach Notification in Incident Handling
Jeffery Buffington
Category: Incident Handling
Posted: March 4, 2008
The Controlled Event Framework for Information Asset Security
Chris Cronin
Category: Security Awareness
Posted: February 20, 2008
802.11 Denial of Service Attacks and Mitigation
Stuart Compton
Category: Wireless Access
Posted: February 20, 2008
Josh Backfield
Category: Security Modeling
Posted: July 3, 2008
Detecting Hydan: Statistical Methods For Classifying The Use Of Hydan Based Stegonagraphy In Executable Files
Craig Wright
Category: Steganography
Posted: July 3, 2008
There's a hole in my infrastructure? The road to PCI Compliance
Jonathan Chaitow
Category: Security Policy Issues
Posted: July 3, 2008
A Forensic Primer for Usenet Evidence
Mark Lachniet
Category: Forensics
Posted: June 25, 2008
Preparing to face new vulnerabilities
Jacelyn Faucher
Category: Security Basics
Posted: June 25, 2008
Host Intrusion Prevention Systems and Beyond
Jonathan Chee
Category: Intrusion Prevention
Posted: June 24, 2008
Security Policy for the use of handheld devices in corporate environments
Nicolas Guerin
Category: PDAs and Other Mobile Devices
Posted: June 24, 2008
An approach to the ultimate in-depth security event management framework
Nicolas Pachis
Category: Incident Handling
Posted: June 23, 2008
Mining gold... A primer on incident handling and response
Stacy Jordan
Category: Incident Handling
Posted: June 23, 2008
Programming Wireless Security
Robin Wood
Category: Wireless Access
Posted: June 18, 2008
Auditing Nokia Firewall
Richard Sokal
Category: Auditing & Assessment
Posted: June 18, 2008
Creating and Maintaining Policies for Working with Law Enforcement
Tim Proffitt
Category: Incident Handling
Posted: May 21, 2008
Ex-Tip: An Extensible Timeline Analysis Framework in Perl
Michael Cloppert
Category: Forensics
Posted: May 21, 2008
Incident Handling for SMEs (Small to Medium Enterprises)
Terry Morreale
Category: Incident Handling
Posted: May 20, 2008
Making Security Awareness Efforts Work for You
Rebecca Fowler
Category: Security Awareness
Posted: May 20, 2008
Network IDS & IPS Deployment Strategies
Nicholas Pappas
Category: Intrusion Detection
Posted: April 11, 2008
Creating a Comprehensive Vulnerability Assessment Program for a Large Company Using QualysGuard
Tim Proffitt
Category: Auditing & Assessment
Posted: March 31, 2008
Effectiveness of Antivirus in Detecting Metasploit Payloads
Mark Baggett
Category: Case Studies
Posted: March 28, 2008
Advanced Threat Analytics for Incident Response
Darren Spruell
Category: Security Modeling
Posted: March 28, 2008
Challenges of Managing an Intrusion Detection System (IDS) in the Enterprise
Russell Meyer
Category: Intrusion Detection
Posted: March 28, 2008
Session Hijacking in Windows Networks
Paul Jess
Category: Windows Issues
Posted: March 28, 2008
Threat Analysis of Allowing Employee Internet Access
Mason Pokladnik
Category: Threats/Vulnerabilities
Posted: March 28, 2008
Breach Notification in Incident Handling
Jeffery Buffington
Category: Incident Handling
Posted: March 4, 2008
The Controlled Event Framework for Information Asset Security
Chris Cronin
Category: Security Awareness
Posted: February 20, 2008
802.11 Denial of Service Attacks and Mitigation
Stuart Compton
Category: Wireless Access
Posted: February 20, 2008
Check Them Out!
This is hands-down, the premiere training opportunity.
- Dan Mather, JICPAC
