- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
select a course
Washington, DC - July 22 - 31, 2008
- Event Location & Info
- General Info
- Faculty
- Vendor Expo
Provided more depth on available tools than any other conference!
-Eric Moriak, Flowserve
SANS @Night
Mistakes Made with Snort, and How to Correct Them
- Joel Esler
- Wednesday, July 23, 2008 * 7:00pm
A quick 10 topic list of the most commonly made mistakes made while using Snort, what they mean, how to correct them, and why you should.
State of the Internet
- Panel Discussion
- Moderators: Marc Sachs, Johannes Ullrich, ISC
- Thursday, July 24, 2008 * 8:00pm
Cold Boot Attacks for Pen Testers
- Ed Skoudis & Tom Liston
- Friday, July 25 * 7:00pm
We've all heard about the recently announced "cold boot" attacks against disk encryption, but there are aspects of these attacks that are applicable to physical pen tests and forensics. Skoudis and Liston will discuss cold boot issues and demonstrate tools for creating memory dumps and for finding passwords for some common applications within them. We'll also discuss how penetration testers can incorporate cold-boot attacks into their penetration testing methodology, increasing the effectiveness of their physical security assessments.
Common Mistakes Almost Every Organization Makes
- Mark Hofman, Shearwater Solutions
- Saturday, July 26, 2008 * 6:00pm-7:00pm
While each organization has its own security challenges it is quite surprising how many people are trying to solve the exact same problems. Using information collected over the last few years from penetration tests, audits, submissions to the ISC and observations on how different companies manage security, we'll go through a number of the issues facing organizations, why they occur, what can be done about them andif they really are that bad. We'll look at some of the commoncompliance, technical and any other issues we can identify. You should come away from the session with the knowledge that you are not alone in your suffering, some practical ideas of how to help address them and maybe even a good start on your next risk assessment.
Malware Counterstrike
- Lorna Hutcheson
- Saturday, July 26, 2008 * 7:00pm
The cyber world is a melting pot of malware, the majority of which goes unrecognized by many antivirus vendors. It doesn't take long for a stroll through cyber land to lead to an encounter with malware. The sad reality is that the malware authors are getting better and smarter. We can no longer afford to sit back and hope our antivirus protects us. It is time to go on the offense and take proactive steps to detect and protect against malware. This presentation will look at different techniques and tools to detect and mitigate the effects of malware. If you want to join in on the counterstrike against malware, you won't want to miss this!