- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
Top 25 Papers
Last Updated August 22, 2008
Performing Egress Filtering
By: Dennis Distler
Category: Firewalls & Perimeter Protection
Posted: August 20, 2008
Creating and Maintaining Policies for Working with Law Enforcement
By: Tim Proffitt
Category: Incident Handling
Posted: May 21, 2008
Intrusion Detection and Prevention In-sourced or Out-sourced
By: Vince Fitzparick
Category: Intrusion Prevention
Posted: July 30, 2008
Successfully Building Security into Business Projects
By: Alex Clayton
Category: Management & Leadership
Posted: August 7, 2008
Leading the Transformation of a Security Organization as a New Security Manager
By: Robert Mayhugh
Category: Management & Leadership
Posted: August 19, 2008
Cisco Pix Log Analysis In a University Setting
By: Jack Vant
Category: Logging Technology and Techniques
Posted: July 29, 2008
A Reverse Proxy Is A Proxy By Any Other Name
By: Art Stricek
Category: Web Servers
Posted: January 10, 2002
OpenVPN and the SSL VPN Revolution
By: Charlie Hosner
Category: Encryption & VPNs
Posted: August 25, 2004
Microsoft Vista Firewall; Dissected
By: Phil Kostenbader & Bob Rudis
Category: Firewalls & Perimeter Protection
Posted: August 9, 2007
Windows Vista: First Steps
By: Johannes Ullrich
Category: Windows Issues
Posted: December 23, 2003
OS and Application Fingerprinting Techniques
By: Jon Mark Allen
Category: Protocols
System Administration
Tools
Posted: September 27, 2007
DNS Spoofing by The Man In The Middle
By: Ian Green
Category: DNS Issues
Posted: May 5, 2005
MALWARE 101 – VIRUSES
By: Aman Hardikar
Category: Incident Handling
Posted: July 15, 2008
Attack vs. Defense on an Organizational Scale
By: Omar Fink
Category: Hackers
Threats/Vulnerabilities
Posted: December 11, 2007
Detecting and Preventing Rogue Devices on the Network
By: Ibrahim Halil Saruhan
Category: Intrusion Detection
Wireless Access
Posted: August 13, 2007
WiFi with BackTrack
By: Antonio Merola
Category: Auditing & Assessment
Posted: December 24, 2007
Forensic Analysis of a SQL Server 2005 Database Server
By: Kevvie Fowler
Category: Application/Database Sec
Forensics
Posted: September 28, 2007
A Practical Guide to Enterprise Antivirus and Malware Prevention
By: Jay Martin
Category: Malicious Code
Posted: August 17, 2001
Information Security Policy - A Development Guide for Large and Small Companies
By: Sorcha Diver
Category: Security Policy Issues
Posted: March 2, 2004
A Practical Guide to Auditing an ASP
By: Johanna Ollinger
Category: Auditing & Assessment
Posted: May 17, 2005
Network Security Model
By: Josh Backfield
Category: Security Modeling
Posted: July 3, 2008
Network IDS & IPS Deployment Strategies
By: Nicholas Pappas
Category: Intrusion Detection
Intrusion Prevention
Posted: April 11, 2008
Incident Handling for SMEs (Small to Medium Enterprises)
By: Terry Morreale
Category: Incident Handling
Posted: May 20, 2008
Security Policy Roadmap - Process for Creating Security Policies
By: Chaiw Kee
Category: Security Policy Issues
Posted: October 2, 2001
A Forensic Primer for Usenet Evidence
By: Mark Lachniet
Category: Forensics
Posted: June 25, 2008
By: Dennis Distler
Category: Firewalls & Perimeter Protection
Posted: August 20, 2008
Creating and Maintaining Policies for Working with Law Enforcement
By: Tim Proffitt
Category: Incident Handling
Posted: May 21, 2008
Intrusion Detection and Prevention In-sourced or Out-sourced
By: Vince Fitzparick
Category: Intrusion Prevention
Posted: July 30, 2008
Successfully Building Security into Business Projects
By: Alex Clayton
Category: Management & Leadership
Posted: August 7, 2008
Leading the Transformation of a Security Organization as a New Security Manager
By: Robert Mayhugh
Category: Management & Leadership
Posted: August 19, 2008
Cisco Pix Log Analysis In a University Setting
By: Jack Vant
Category: Logging Technology and Techniques
Posted: July 29, 2008
A Reverse Proxy Is A Proxy By Any Other Name
By: Art Stricek
Category: Web Servers
Posted: January 10, 2002
OpenVPN and the SSL VPN Revolution
By: Charlie Hosner
Category: Encryption & VPNs
Posted: August 25, 2004
Microsoft Vista Firewall; Dissected
By: Phil Kostenbader & Bob Rudis
Category: Firewalls & Perimeter Protection
Posted: August 9, 2007
Windows Vista: First Steps
By: Johannes Ullrich
Category: Windows Issues
Posted: December 23, 2003
OS and Application Fingerprinting Techniques
By: Jon Mark Allen
Category: Protocols
System Administration
Tools
Posted: September 27, 2007
DNS Spoofing by The Man In The Middle
By: Ian Green
Category: DNS Issues
Posted: May 5, 2005
MALWARE 101 – VIRUSES
By: Aman Hardikar
Category: Incident Handling
Posted: July 15, 2008
Attack vs. Defense on an Organizational Scale
By: Omar Fink
Category: Hackers
Threats/Vulnerabilities
Posted: December 11, 2007
Detecting and Preventing Rogue Devices on the Network
By: Ibrahim Halil Saruhan
Category: Intrusion Detection
Wireless Access
Posted: August 13, 2007
WiFi with BackTrack
By: Antonio Merola
Category: Auditing & Assessment
Posted: December 24, 2007
Forensic Analysis of a SQL Server 2005 Database Server
By: Kevvie Fowler
Category: Application/Database Sec
Forensics
Posted: September 28, 2007
A Practical Guide to Enterprise Antivirus and Malware Prevention
By: Jay Martin
Category: Malicious Code
Posted: August 17, 2001
Information Security Policy - A Development Guide for Large and Small Companies
By: Sorcha Diver
Category: Security Policy Issues
Posted: March 2, 2004
A Practical Guide to Auditing an ASP
By: Johanna Ollinger
Category: Auditing & Assessment
Posted: May 17, 2005
Network Security Model
By: Josh Backfield
Category: Security Modeling
Posted: July 3, 2008
Network IDS & IPS Deployment Strategies
By: Nicholas Pappas
Category: Intrusion Detection
Intrusion Prevention
Posted: April 11, 2008
Incident Handling for SMEs (Small to Medium Enterprises)
By: Terry Morreale
Category: Incident Handling
Posted: May 20, 2008
Security Policy Roadmap - Process for Creating Security Policies
By: Chaiw Kee
Category: Security Policy Issues
Posted: October 2, 2001
A Forensic Primer for Usenet Evidence
By: Mark Lachniet
Category: Forensics
Posted: June 25, 2008
Check Them Out!
This is hands-down, the premiere training opportunity.
- Dan Mather, JICPAC
