Security Training
Security Certification
Cyber Security Graduate School
Internet Storm Center
Security Awareness Training
Computer Forensics
Penetration Testing
IT Audit
Software SecurityLast 25 papers added to the Reading Room
Last Updated May 15, 2013
Event Monitoring and Incident Response
Ryan Boyle
Category: Incident Handling
Posted: May 15, 2013
Dead Linux Machines Do Tell Tales
James Fung
Category: GIAC Honors Papers
Posted: May 15, 2013
Setting Up a Database Security Logging and Monitoring Program
Jim Horwath
Category: Application and Database Security
Posted: May 10, 2013
Managing the Implementation of a BYOD Policy
Jim Horwath
Category: Management & Leadership
Posted: May 8, 2013
Analysis of the building blocks and attack vectors associated with the Unified Extensible Firmware Interface (UEFI)
Jean-Franc Agneessens
Category: Managed Services
Posted: May 2, 2013
Log2Pcap
Joaquin Moreno
Category: Intrusion Detection
Posted: May 1, 2013
Information Risks & Risk Management
John Wurzler
Category: Best Practices
Posted: May 1, 2013
Using IOC (Indicators of Compromise) in Malware Forensics
Hun-Ya Lock
Category: Incident Handling
Posted: April 22, 2013
Methodology for Firewall Reviews for PCI Compliance
K. Warren
Category: Auditing & Assessment
Posted: April 18, 2013
Analyzing Polycom® Video Conference Traffic
Chris Cain
Category: Protocols
Posted: April 16, 2013
InfoWar: Cyber Terrorism in the 21st Century Can SCADA Systems Be Successfully Defended, or are They Our "Achilles Heel"?
Michael Ratledge
Category: Information Warfare
Posted: April 16, 2013
Custom Full Packet Capture System
Derek Banks
Category: Logging Technology and Techniques
Posted: April 16, 2013
Implementing a Vulnerability Management Process
Tom Palmaers
Category: Threats/Vulnerabilities
Posted: April 16, 2013
Website Security for Mobile
Alan Ho
Category: PDAs and Other Mobile Devices
Posted: April 16, 2013
Securing BYOD With Network Access Control, a Case Study
Lawrence Orans
Category: PDAs and Other Mobile Devices
Posted: April 11, 2013
Endpoint Security through Application Streaming
Adam Walter
Category: Application and Database Security
Posted: March 25, 2013
Indicators of Compromise in Memory Forensics
Chad Robertson
Category: Forensics
Posted: March 25, 2013
Creating a Bastioned Centralized Audit Server with GroundWork Open Source Log Monitoring for Event Signatures
Christopher Duffy
Category: Logging Technology and Techniques
Posted: March 25, 2013
Detecting DNS Tunneling
Greg Farnham
Category: DNS Issues
Posted: March 25, 2013
AirNIDS: The Need for Intrusion Detection on the Wireless Ether
Thomas Hoffecker
Category: Intrusion Detection
Posted: March 19, 2013
Beating the IPS
Michael Dyrmose
Category: Intrusion Prevention
Posted: March 15, 2013
Implementing Redmine for Secure Project Management
Russ McRee
Category: Penetration Testing
Posted: March 15, 2013
Web Log Analysis and Defense with Mod_Rewrite
Rick Wanner
Category: Intrusion Prevention
Posted: March 15, 2013
Windows Logon Forensics
Sunil Gupta
Category: Forensics
Posted: March 15, 2013
Project Management Approach to Yearly PCI Compliance Assessment
Michael Hoehl
Category: Compliance
Posted: February 19, 2013
Ryan Boyle
Category: Incident Handling
Posted: May 15, 2013
Dead Linux Machines Do Tell Tales
James Fung
Category: GIAC Honors Papers
Posted: May 15, 2013
Setting Up a Database Security Logging and Monitoring Program
Jim Horwath
Category: Application and Database Security
Posted: May 10, 2013
Managing the Implementation of a BYOD Policy
Jim Horwath
Category: Management & Leadership
Posted: May 8, 2013
Analysis of the building blocks and attack vectors associated with the Unified Extensible Firmware Interface (UEFI)
Jean-Franc Agneessens
Category: Managed Services
Posted: May 2, 2013
Log2Pcap
Joaquin Moreno
Category: Intrusion Detection
Posted: May 1, 2013
Information Risks & Risk Management
John Wurzler
Category: Best Practices
Posted: May 1, 2013
Using IOC (Indicators of Compromise) in Malware Forensics
Hun-Ya Lock
Category: Incident Handling
Posted: April 22, 2013
Methodology for Firewall Reviews for PCI Compliance
K. Warren
Category: Auditing & Assessment
Posted: April 18, 2013
Analyzing Polycom® Video Conference Traffic
Chris Cain
Category: Protocols
Posted: April 16, 2013
InfoWar: Cyber Terrorism in the 21st Century Can SCADA Systems Be Successfully Defended, or are They Our "Achilles Heel"?
Michael Ratledge
Category: Information Warfare
Posted: April 16, 2013
Custom Full Packet Capture System
Derek Banks
Category: Logging Technology and Techniques
Posted: April 16, 2013
Implementing a Vulnerability Management Process
Tom Palmaers
Category: Threats/Vulnerabilities
Posted: April 16, 2013
Website Security for Mobile
Alan Ho
Category: PDAs and Other Mobile Devices
Posted: April 16, 2013
Securing BYOD With Network Access Control, a Case Study
Lawrence Orans
Category: PDAs and Other Mobile Devices
Posted: April 11, 2013
Endpoint Security through Application Streaming
Adam Walter
Category: Application and Database Security
Posted: March 25, 2013
Indicators of Compromise in Memory Forensics
Chad Robertson
Category: Forensics
Posted: March 25, 2013
Creating a Bastioned Centralized Audit Server with GroundWork Open Source Log Monitoring for Event Signatures
Christopher Duffy
Category: Logging Technology and Techniques
Posted: March 25, 2013
Detecting DNS Tunneling
Greg Farnham
Category: DNS Issues
Posted: March 25, 2013
AirNIDS: The Need for Intrusion Detection on the Wireless Ether
Thomas Hoffecker
Category: Intrusion Detection
Posted: March 19, 2013
Beating the IPS
Michael Dyrmose
Category: Intrusion Prevention
Posted: March 15, 2013
Implementing Redmine for Secure Project Management
Russ McRee
Category: Penetration Testing
Posted: March 15, 2013
Web Log Analysis and Defense with Mod_Rewrite
Rick Wanner
Category: Intrusion Prevention
Posted: March 15, 2013
Windows Logon Forensics
Sunil Gupta
Category: Forensics
Posted: March 15, 2013
Project Management Approach to Yearly PCI Compliance Assessment
Michael Hoehl
Category: Compliance
Posted: February 19, 2013
Check Them Out!
This course will provide a wealth of information to advance my career in the IT field.
-Doreen Lawrence, Los Alamos National Lab
