Blogs

Computer Forensics Blog

Every organization will eventually deal with cyber-crime. Fraud, intrusion, insider threats, phishing and other cyber-crimes are now a fact of life. If you are an IT or law enforcement professional and don't know how to look for and sort out these cases, your skills are becoming less valuable every day. SANS developed this site and the related resources to provide a 'home' for those that are focused on computer forensics. You can find advice, research, training, and other resources to unravel incidents and fight crime.

Visit the SANS Computer Forensics Blog

Security Awareness Blog

SANS Securing the Human is the world's leading provider of information security awareness services. We can quickly supply everything you need for a comprehensive Awareness Program; including online training, newsletters, posters, screensavers, banners, flyers and other materials.

Visit the SANS Security Awareness Blog

Cloud Security Blog

We as security professionals are still trying to define what the term "cloud security" even means. Can I leverage my existing security tools and processes, or do I need to start from scratch? How do I secure a server that can move from the private LAN to multiple public providers? Can I just outsource all my security concerns to my IaaS provider? These are just a few of the question we as a community are trying to work through.

Visit the SANS Cloud Security Blog

Security Trends Blog

The challenges security managers face never stand still. Threats change, new technologies appear, global conflicts arise, economic cycles drive business change - the trends in each of these areas have profound and complex impact on successful security strategies. The SANS Security Trends blog will highlight and analyze emerging security trends and discuss new data from SANS, vendors, government sources, the security community and current events. Join us in finding the meaningful events and predictions amidst all the hype and noise.

Visit the SANS Security Trends Blog

Internet Storm Center Diary/Blog

The Internet Storm Center gathers millions of intrusion detection log entries every day, from sensors covering over 500,000 IP addresses in over 50 countries. It is rapidly expanding in a quest to do a better job of finding new storms faster, identifying the sites that are used for attacks, and providing authoritative data on the types of attacks that are being mounted against computers in various industries and regions around the globe. The Internet Storm Center is a free service to the Internet community. The work is supported by the SANS Institute from tuition paid by students attending SANS security education programs. Volunteer incident handlers donate their valuable time to analyze detects and anomalies, and post a daily diary of their analysis and thoughts on the Storm Center web site.

Visit the SANS Internet Storm Center Diary/Blog

Penetration Testing Blog

High-value penetration testing doesn't involve just throwing a bunch of hacks at a target environment and declaring victory when a shell prompt magically pops up. Instead, the best penetration testers focus on understanding their craft in-depth, providing significant value to organizations by improving their security stance through technical excellence and implementation of a well-understood and repeatable methodologies, which will deliver real savings and security to the business.

Visit the SANS Penetration Testing Blog

Software Security Blog

SANS Software Security brings the most trusted name in computer security training to developers, programmers and application security professionals.

Visit the SANS Software Security Blog

IT Audit Blog

SANS Audit program is dedicated to partnering with the IT Audit community to improve the overall practice of technical and IT process auditors through rigorous training programs, allowing auditors to discern truth from fiction, in addition to contributing valuable resources to the community at large, creating a valuable and prominent resource for the entire IT Audit community.

Visit the SANS IT Audit Blog

SANS Technology Institute (STI) Blogs

SANS is a thought leader in information security making The SANS Technology Institute one of the nation's leading security graduate schools that grants Masters degrees in information security. Students are taught to be leaders with a demonstrated track record of leadership, knowledge and expertise in information technology and security. At SANS, the wisdom of industry and business, college academia and practical skills merge as students are taught by leaders with a demonstrated track record of leadership, knowledge and expertise in information technology and security.

The SANS Technology Institute maintains 4 unique blogs:

Visit the SANS Technology Institute (STI) Research Page

Share


Share This On Twitter Share This On Facebook Share This On Google+


Mentor Program
Latest Whitepapers

Event Monitoring and Incident Response
By Ryan Boyle

Dead Linux Machines Do Tell Tales
By James Fung

Setting Up a Database Security Logging and Monitoring Program
By Jim Horwath

Last 25 Papers »

Latest Tweets @SANSInstitute

#appsec "WhatWorks in AppSec: Log Forging" http://t.co/Gsq91O7UAH
May 22, 2013 - 10:00 AM

DFIR Webcast starts in 75 minutes - 50 Shades of Hidden - Di [...]
May 17, 2013 - 3:46 PM

New blog post by @yorikv on pen test tips for file analysis. [...]
May 16, 2013 - 5:07 PM

Contact Us

(301) 654-SANS (7267)
Mon-Fri 9am - 8pm EST/EDT
info@sans.org

"It was a great learning experience that helped open my eyes wider. The instructor's knowledge was fantastic."
- Manuja Wikesekera, Melbourne Cricket Club

"Because of the use of real-world examples it's easier to apply what you learn."
- Danny Hill, Friedkin Companies, Inc.

"SANS is a great place to enhance your technical and hands-on skills and tools. I thoroughly recommend it."
- Aaron Waugh, Datacom NZ Ltd