- Training
- Training Live Events
- Training Without Travel
- Security Courses
- Security Curricula
- Certified Instructors
- Training Calendars
- SANS vLive!
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- Coins
- SANS Onsite
- SANS SelfStudy
- SANS Summit Series
- SANS Partnership Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- List of Resources
- Top Security Risks
- Top 25 Programming Errors
- 20 Coolest Jobs
- Application Security Procurement Language
- Top 10 Security Trends
- Top 5 Essential Log Reports
- Reading Room
- Webcasts
- AudioCasts
- WhatWorks
- Newsletters
- RSS Feeds
- Calendar Feeds
- Security Thought Leaders
- Security Policy Project
- Security+ Study Guide
- SANS Buyers Guide
- Security Tool Demos
- 2008 Salary Survey
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
The most trusted source for computer security training, certification and research.
Last 25 papers added to the Reading Room
Last Updated Mar 10, 2010
Effective Use Case Modeling for Security Information & Event Management
Daniel Frye
Category: Auditing & Assessment
Posted: March 10, 2010
Penetration Testing in the Financial Services Industry
Christopher Olson
Category: Penetration Testing
Posted: March 9, 2010
Identifying Load Balancers in Penetration Testing
Curt Shaffer
Category: Penetration Testing
Posted: March 9, 2010
IT Guidance to the Legal Team
Brad Ruppert
Category: Legal Issues
Posted: March 8, 2010
Building Servers as Appliances for Improved Security
Algis Kibirkstis
Category: Best Practices
Posted: March 8, 2010
One Admin’s Documentation is their Hacker’s Pentest
Rob VandenBrink
Category: Auditing & Assessment
Posted: March 8, 2010
Meeting Compliance Efforts with the Mother of All Control Lists (MOACL)
Tim Proffitt
Category: Compliance
Posted: March 4, 2010
Comprehensive Blended Malware Threat Dissection Analyze Fake Anti-Virus Software and PDF Payloads
Anthony Cheuk Tung Lai
Category: Malicious Code
Posted: March 2, 2010
Incident Handling as a Service
Michel Lundell
Category: Incident Handling
Posted: March 1, 2010
Analyzing Enterprise PKI Deployments
Walter Goulet
Category: Auditing & Assessment
Posted: February 26, 2010
Pass-the-hash attacks: Tools and Mitigation
Bashar Ewaida
Category: Penetration Testing
Posted: February 23, 2010
SIEM Based Intrusion Detection with Q1Labs Qradar
Jim Beechey
Category: Intrusion Detection
Posted: February 18, 2010
Reverse Engineering the Microsoft exFAT File System
Robert Shullich
Category: Forensics
Posted: February 18, 2010
The Evolving Role of Security Structures
Dale Emel
Category: Management & Leadership
Posted: January 28, 2010
Capturing and Analyzing Packets with Perl
John Brozycki
Category: Intrusion Detection
Posted: January 28, 2010
Winquisitor: Windows Information Gathering Tool
Michael Cardosa
Category: Incident Handling
Posted: January 19, 2010
Smart IDS - Hybrid LaBrea Tarpit
Cristian Ruvalcaba
Category: Case Studies
Posted: December 28, 2009
A Taste of Scapy
Judy Novak
Category: Penetration Testing
Posted: December 24, 2009
Securing the Network Perimeter of a Community Bank
Steven Launius
Category: Firewalls & Perimeter Protection
Posted: December 17, 2009
Preventing Incidents with a Hardened Web Browser
Chris Crowley
Category: Best Practices
Posted: December 15, 2009
Information Security: Starting Out
Stewart James
Category: Getting Started/InfoSec
Posted: December 7, 2009
Defense in Depth: How Application Whitelisting Can Increase Your Desktop Security
Faronics
Category: System Administration
Posted: November 23, 2009
Gathering Security Metrics and Reaping the Rewards
Dan Rathbun
Category: Management & Leadership
Posted: November 16, 2009
Implementing Data-at-Rest Encryption within the Oracle RDBMS
RDC, Inc.
Category: Web Servers
Posted: November 12, 2009
Hey Dude! I Can Do a Great Humphrey Bogart!
Lee Peterson
Category: Network Devices
Posted: November 11, 2009
Daniel Frye
Category: Auditing & Assessment
Posted: March 10, 2010
Penetration Testing in the Financial Services Industry
Christopher Olson
Category: Penetration Testing
Posted: March 9, 2010
Identifying Load Balancers in Penetration Testing
Curt Shaffer
Category: Penetration Testing
Posted: March 9, 2010
IT Guidance to the Legal Team
Brad Ruppert
Category: Legal Issues
Posted: March 8, 2010
Building Servers as Appliances for Improved Security
Algis Kibirkstis
Category: Best Practices
Posted: March 8, 2010
One Admin’s Documentation is their Hacker’s Pentest
Rob VandenBrink
Category: Auditing & Assessment
Posted: March 8, 2010
Meeting Compliance Efforts with the Mother of All Control Lists (MOACL)
Tim Proffitt
Category: Compliance
Posted: March 4, 2010
Comprehensive Blended Malware Threat Dissection Analyze Fake Anti-Virus Software and PDF Payloads
Anthony Cheuk Tung Lai
Category: Malicious Code
Posted: March 2, 2010
Incident Handling as a Service
Michel Lundell
Category: Incident Handling
Posted: March 1, 2010
Analyzing Enterprise PKI Deployments
Walter Goulet
Category: Auditing & Assessment
Posted: February 26, 2010
Pass-the-hash attacks: Tools and Mitigation
Bashar Ewaida
Category: Penetration Testing
Posted: February 23, 2010
SIEM Based Intrusion Detection with Q1Labs Qradar
Jim Beechey
Category: Intrusion Detection
Posted: February 18, 2010
Reverse Engineering the Microsoft exFAT File System
Robert Shullich
Category: Forensics
Posted: February 18, 2010
The Evolving Role of Security Structures
Dale Emel
Category: Management & Leadership
Posted: January 28, 2010
Capturing and Analyzing Packets with Perl
John Brozycki
Category: Intrusion Detection
Posted: January 28, 2010
Winquisitor: Windows Information Gathering Tool
Michael Cardosa
Category: Incident Handling
Posted: January 19, 2010
Smart IDS - Hybrid LaBrea Tarpit
Cristian Ruvalcaba
Category: Case Studies
Posted: December 28, 2009
A Taste of Scapy
Judy Novak
Category: Penetration Testing
Posted: December 24, 2009
Securing the Network Perimeter of a Community Bank
Steven Launius
Category: Firewalls & Perimeter Protection
Posted: December 17, 2009
Preventing Incidents with a Hardened Web Browser
Chris Crowley
Category: Best Practices
Posted: December 15, 2009
Information Security: Starting Out
Stewart James
Category: Getting Started/InfoSec
Posted: December 7, 2009
Defense in Depth: How Application Whitelisting Can Increase Your Desktop Security
Faronics
Category: System Administration
Posted: November 23, 2009
Gathering Security Metrics and Reaping the Rewards
Dan Rathbun
Category: Management & Leadership
Posted: November 16, 2009
Implementing Data-at-Rest Encryption within the Oracle RDBMS
RDC, Inc.
Category: Web Servers
Posted: November 12, 2009
Hey Dude! I Can Do a Great Humphrey Bogart!
Lee Peterson
Category: Network Devices
Posted: November 11, 2009
Check Them Out!
Topical information that can immediately be applied and shared in the workplace.
-Blair Campbell, Bank of Nova Scotia
- © 2000-2010 The SANS™ Institute
- Web Privacy Policy | Web Contact | Link to Us |
- Press Room | Trademark Usage Policy