Security Training
Security Certification
Cyber Security Graduate School
Internet Storm Center
Security Awareness Training
Computer Forensics
Penetration Testing
IT Audit
Software Security
June 19, 2013:
Wednesday Webcast: Cast a Wider Net: Network-Based Approach to APTs
- Featured Speaker: John Pescatore and Kurt Bertone
- Sponsored By: General Dynamics Fidelis Cybersecurity
- Details: click here
2010 Webcast Archive
- December 27, 2010:
- Anatomy of the Advanced Persistent Threat (This webcast is a re-release of a previously aired webcast)
- Sponsored By: IBM
- December 21, 2010:
- The Virtualization Movement: Trends and Risks in Virtualization System Security and How to Prepare Effectively
- Sponsored By: IBM
- December 20, 2010:
- Securing Services at the Network Edge - Combining Security Enforcement and Governance
- Sponsored By: Intel , Software AG
- December 17, 2010:
- CDI2010 - Security 580: Metasploit Kung Fu for Enterprise Pen Testing
- Sponsored By:
- December 17, 2010:
- CDI2010 - Security 577: Virtualization Security Fundamentals
- Sponsored By:
- December 16, 2010:
- Countdown to Compliance: Building Blocks for a PCI/PA DSS
- Sponsored By: Veracode
- December 15, 2010:
- Detect Data Loss and Fraud with Application Monitoring and SIEM
- Sponsored By: NitroSecurity
- December 14, 2010:
- LIVE WEBCAST DIRECT FROM SANS Cyber Defense Initiative 2010! Core Security Lunch & Learn Presentation Efficient Vulnerability Management with Penetration Testing
- Sponsored By: Core Security Technologies
- December 13, 2010:
- Continuous Vulnerability Testing and Remediation: The 20 Critical Security Controls Perspective
- Sponsored By:
- December 13, 2010:
- Scared Straight: A Real-World Web App Attack and How to Prevent It
- Sponsored By:
- December 12, 2010:
- Knock, Knock! How Attackers Use Social Engineering to Bypass Your Defenses
- Sponsored By:
- December 11, 2010:
- Indicators of Compromise: ABCs of IOCs
- Sponsored By:
- December 10, 2010:
- Securing the Human
- Sponsored By:
- December 10, 2010:
- Beyond AV: Total Endpoint Security For Multi-Regulatory Compliance and Better Security
- Sponsored By: BigFix, Inc.
- December 09, 2010:
- 7 Things You Didn't Know You Could Do With SIEM: Demonstrating How Organizations are Moving from SIEM to Security Intelligence
- Sponsored By: Q1 Labs
- December 08, 2010:
- Internet Storm Center Update
- Sponsored By: Core Security Technologies
- December 07, 2010:
- Taming the Social Network Beast
- Sponsored By: Palo Alto Networks
- December 02, 2010:
- Endpoint Security: Stopping Stuxnet and other Blended Threats in the Real World
- Sponsored By: BigFix, Inc.
- November 26, 2010:
- Special Webcast: What's Old is (Virtually) New: Secure virtual environments with established security practices and virtual-specific solutions (This webcast is a re-release of a previously aired webcast)
- Sponsored By: IBM
- November 17, 2010:
- Breaking Out of Restricted Windows Desktops
- Sponsored By:
- November 16, 2010:
- PCI 2.0: What's new? What's important? What's missing?
- Sponsored By: Dell SecureWorks
- November 16, 2010:
- Social Engineering with Frame Control
- Sponsored By: SANS
- November 12, 2010:
- Advanced Warning - Network Early Warning Systems Part II
- Sponsored By:
- November 10, 2010:
- Sponsored By: Core Security Technologies
- November 08, 2010:
- What every Network Forensics Analyst needs to know about IPv6
- Sponsored By: SANS
- November 03, 2010:
- Building a Better Bunker: Securing Energy Control Systems Against Terrorists and Cyberwarriors
- Sponsored By: McAfee, Inc. , NitroSecurity
- November 02, 2010:
- Microsoft Patch Analysis and Exploitation
- Sponsored By: Core Security Technologies
- November 02, 2010:
- Browser Exploitation for Fun and Profit
- Sponsored By: SANS
- October 29, 2010:
- An inside look at Stuxnet
- Sponsored By: IBM
- October 28, 2010:
- Firewall Change Management - Don't let one error change everything
- Sponsored By: Skybox Security, Inc.
- October 27, 2010:
- Securing Services at the Network Edge - Combining Security Enforcement and Governance
- Sponsored By: Intel , Software AG
- October 26, 2010:
- Cyberwar or Business as Usual? - The State of International Cyber Security Efforts
- Sponsored By:
- October 26, 2010:
- Super Timeline Analysis
- Sponsored By: Australian Computing Society
- October 21, 2010:
- Sponsored By: Core Security Technologies
- October 21, 2010:
- How to Implement Practical Security with SEC401 - Solutions that Work
- Sponsored By:
- October 20, 2010:
- Baselines not Barriers: How Cross-Functional IT Baselines can create the Foundation for a Unified Security Strategy
- Sponsored By: BDNA
- October 19, 2010:
- Building a Better Bunker: Securing Energy Control Systems Against Terrorists and Cyberwarriors
- Sponsored By: McAfee, Inc. , NitroSecurity
- October 19, 2010:
- Pen-Testing a Proprietary Target
- Sponsored By:
- October 07, 2010:
- Establishing real-time continuous visibility and control over all of your network endpoints in days
- Sponsored By: BigFix, Inc.
- October 05, 2010:
- Magic Numbers: An In-depth guide to the five key metrics for application security
- Sponsored By: Hewlett Packard
- September 29, 2010:
- What to Know about Laptop Encryption to Save Yourself from Future Hassles
- Sponsored By: DigitalPersona, Inc.
- September 29, 2010:
- Modern Web Application Attacks
- Sponsored By: Websense
- September 23, 2010:
- IPS in the Real World: Stopping the Latest Threats Without Sacrificing Performance
- Sponsored By: Palo Alto Networks
- September 22, 2010:
- The Security Risks and Trends You Must Consider in 2010: Highlights from the IBM X-Force 2010 Mid-Year Trend and Risk Report
- Sponsored By: IBM
- September 22, 2010:
- Contextual Encoding is the new Input Validation
- Sponsored By: ISACA Bangalore
- September 15, 2010:
- Sponsored By: Core Security Technologies
- September 14, 2010:
- Continuous Monitoring: What You Need to Know
- Sponsored By: Prism Microsystems, Inc.
- September 03, 2010:
- Examining the Global Underground of Malicious Actors
- Sponsored By: Core Security Technologies
- September 02, 2010:
- Operationalizing Security - Making the top 10 SIEM best practices work; Metrics, Processes and Technologies
- Sponsored By: AccelOps , CSO Breakfast Club
- September 01, 2010:
- Bad Boys, Bad Boys, Whatcha Gonna Do
- Sponsored By: Q1 Labs
- August 31, 2010:
- Electronic Records Retention Policy
- Sponsored By:
- August 25, 2010:
- The New Requirements for Your Network IPS Solutions
- Sponsored By: IBM
- August 23, 2010:
- PCI & Encryption: Limiting Legal Exposure & Maintaining Compliance
- Sponsored By:
- August 12, 2010:
- Detecting Advanced Threats and Malware with SIEM
- Sponsored By: NitroSecurity
- July 30, 2010:
- Virtualization and PCI: 5 Things to Know and Check
- Sponsored By:
- July 28, 2010:
- Predictive Cyber Security-Using Risk Modeling and Attack Simulation to Reduce Network Security Exposures and Avoid Cyber Attacks
- Sponsored By: Skybox Security, Inc.
- July 27, 2010:
- The Emergence of Content Aware SIEM
- Sponsored By: NitroSecurity
- July 26, 2010:
- How Outsiders become Insider Threats: Client-Side and Content-Focused Attacks
- Sponsored By: IBM
- July 22, 2010:
- Measuring Network Performance, Security and Stability Under Hostile Conditions: SANS Network Security Survey Results
- Sponsored By: BreakingPoint
- July 20, 2010:
- Making the Case for SIEM
- Sponsored By: ArcSight, an HP Company
- July 14, 2010:
- Sponsored By: Core Security Technologies
- July 13, 2010:
- Hardening your Virtual Linux and Solaris Assets
- Sponsored By: Raytheon Trusted Computer Solutions
- July 08, 2010:
- Live Forensic 4Cast Awards Ceremony
- Sponsored By:
- July 08, 2010:
- SANS Forensic Challenge Winners Presentation
- Sponsored By:
- July 07, 2010:
- Sequencing the IT Genome: Agent-less IT Asset Visibility for an Enhanced Security Strategy
- Sponsored By: BDNA
- June 30, 2010:
- A Primer to Compliance and Security in the Cloud
- Sponsored By: Catbird , McAfee, Inc.
- June 29, 2010:
- Advanced Network Forensics: Finding the Needle in the Haystack
- Sponsored By: LogRhythm
- June 25, 2010:
- A Revolution in Federal Cyber Security: Continuous Automated FISMA Reporting - What's Required By OMB? What Works?
- Sponsored By: Core Security Technologies , nCircle
- June 22, 2010:
- Trust and verify: securing client side code in web services oriented applications.
- Sponsored By: IBM
- June 17, 2010:
- Web Application Threats: Combining XSS and CSRF to own the world!
- Sponsored By: Ounce Labs, Inc.
- June 17, 2010:
- Reserved for Andy
- Sponsored By: Ounce Labs, Inc.
- June 16, 2010:
- Innovation in Application Security: Application Risk Management
- Sponsored By: Veracode
- June 15, 2010:
- Industry Analysts Program - A Guide to Virtual Hardening Guides
- Sponsored By: VMWare, Inc
- June 09, 2010:
- Sponsored By: Core Security Technologies
- June 08, 2010:
- Identifying Patterns in Events: Reducing Risk and Improving Security
- Sponsored By: Splunk
- June 04, 2010:
- elm test 2
- Sponsored By:
- June 04, 2010:
- elm test
- Sponsored By:
- June 03, 2010:
- Report: The State of Software Security
- Sponsored By: Veracode
- June 01, 2010:
- Prioritizing an Audit Program Using the Consensus Audit Guidelines (CAG)
- Sponsored By:
- May 28, 2010:
- Anatomy of the Advanced Persistent Threat - Recording
- Sponsored By: IBM
- May 28, 2010:
- Ann's Aurora: The 2010 Digital Forensics and IR Summit Challenge!
- Sponsored By:
- May 27, 2010:
- Evolve or Die - Trends in Malware Development
- Sponsored By: Webroot Software, Inc.
- May 27, 2010:
- What's new for security in Windows 7 and Windows Server 2008-R2?
- Sponsored By:
- May 26, 2010:
- Introduction to Malware Analysis
- Sponsored By: AISA
- May 26, 2010:
- Privileged Users: Compliance Dictates Their Monitoring, Even with Separation of Duties
- Sponsored By: LogRhythm
- May 25, 2010:
- Prioritizing an Audit Program Using the Consensus Audit Guidelines (CAG)
- Sponsored By:
- May 24, 2010:
- Operating System Security ... a "Fireside Chat"
- Sponsored By: Raytheon Trusted Computer Solutions
- May 20, 2010:
- Improved Database Threat Management with Oracle Audit Vault and ArcSight Enterprise Security Manager
- Sponsored By: Oracle
- May 20, 2010:
- Introducing Fuzzing to your Pen-Testing Regimen
- Sponsored By:
- May 19, 2010:
- Anatomy of the Advanced Persistent Threat
- Sponsored By: IBM
- May 18, 2010:
- iPhone Insecurity
- Sponsored By:
- May 13, 2010:
- A Revolution in Federal Cyber Security: Continuous Automated FISMA Reporting - What's Required By OMB? What Works?
- Sponsored By: Core Security Technologies , nCircle
- May 12, 2010:
- Sponsored By: Core Security Technologies
- May 11, 2010:
- What's New for Security in Windows 7 and Windows Server 2008-R2
- Sponsored By:
- May 11, 2010:
- Simplifying Fine-Grained Security for Enterprise Applications with Entitlements Management
- Sponsored By: Oracle
- May 08, 2010:
- Emerging Trends Panel Discussion (SANS Security West 2010)
- Sponsored By:
- May 07, 2010:
- The State of Security Architecture Practices Today
- Sponsored By:
- May 06, 2010:
- Moving Beyond Archival - Tips and Tricks for Taking the Next Step with Log Management
- Sponsored By: NetIQ
- April 29, 2010:
- The Growing Threat and Impact of Web-Based Malware
- Sponsored By: Dasient
- April 28, 2010:
- Catching Hackers Through Network Log Forensics
- Sponsored By: LogRhythm
- April 28, 2010:
- Defending Web Applications: Going Back to First Principles
- Sponsored By: Veracode
- April 27, 2010:
- Cisco TrustSec Technical Overview
- Sponsored By: Cisco Systems
- April 27, 2010:
- SQL Injection for the Penetration Tester
- Sponsored By: Australian Computing Society
- April 26, 2010:
- Pen Test & Vuln Assessment Summit Preview: Essential Crypto for Pen Testers: No Math Required!
- Sponsored By: Core Security Technologies
- April 21, 2010:
- What's Old is (Virtually) New: Secure virtual environments with established security practices and virtual-specific solutions
- Sponsored By: IBM
- April 19, 2010:
- Manipulating Web Application Interfaces
- Sponsored By:
- April 14, 2010:
- Sponsored By: Core Security Technologies
- April 13, 2010:
- Application Whitelisting: Stop Tomorrow's Malware Today
- Sponsored By: Bit9
- April 08, 2010:
- SANS Sixth Annual Log Management Survey, Part II: Deriving More Value from More Data
- Sponsored By: LogLogic, Inc.
- April 07, 2010:
- Database Monitoring - Beyond Compliance to Pro-active Information Protection
- Sponsored By: NitroSecurity
- April 07, 2010:
- Top 7 Trends in Incident Response and Computer Forensics
- Sponsored By:
- April 06, 2010:
- SANS Sixth Annual Log Management Survey, Part I More Log Data, More Uses
- Sponsored By: ArcSight, an HP Company , Trustwave
- March 29, 2010:
- State of the Hack
- Sponsored By:
- March 25, 2010:
- Automating firewall assessment and audits- Keep your firewalls secure and compliant in a fraction of the time
- Sponsored By: Skybox Security, Inc.
- March 24, 2010:
- Social Zombies: Your Friends Want to Eat your Brains
- Sponsored By:
- March 24, 2010:
- Fighting Back with Computer Forensics
- Sponsored By:
- March 23, 2010:
- Automated Operating System Lockdown: Security Blanket 4.0 Review
- Sponsored By: Raytheon Trusted Computer Solutions
- March 19, 2010:
- Digging Deeper Into The Advanced Persistent Threat
- Sponsored By:
- March 18, 2010:
- Calculating TCO with Adaptive IPS
- Sponsored By: Sourcefire, Inc.
- March 17, 2010:
- Privileged user monitoring - Automating compliance and managing risk
- Sponsored By: LogRhythm
- March 16, 2010:
- Monitoring Administrators Activity in a Virtual Environment
- Sponsored By: RSA, The Security Division of EMC
- March 11, 2010:
- Security Architecture Disasters: And what you can do to avoid them!
- Sponsored By:
- March 10, 2010:
- Sponsored By: Core Security Technologies
- March 09, 2010:
- Smart Strategies for Securing Extranet Access
- Sponsored By: Oracle
- March 09, 2010:
- A Peek into Linux Forensic Analysis
- Sponsored By:
- March 02, 2010:
- The Internet is Evil!! And what you can do about it.
- Sponsored By:
- February 25, 2010:
- Mobile Application Security: Challenges and Opportunities
- Sponsored By: Veracode
- February 24, 2010:
- Identifying and Understanding Advanced Persistent Threats
- Sponsored By: NitroSecurity
- February 16, 2010:
- Oracle Database Security: A Defense in Depth Approach
- Sponsored By: Oracle
- February 11, 2010:
- Cybersecurity: Back to the Future
- Sponsored By: Oracle
- February 10, 2010:
- Sponsored By: Core Security Technologies
- February 09, 2010:
- Prioritizing an Audit Program Using the Consensus Audit Guidelines (CAG)
- Sponsored By: Qualys
- January 27, 2010:
- Advanced Methods for Finding Malware
- Sponsored By: NRI SecureTechnologies
- January 26, 2010:
- Using Scapy to Test a Snort Rule
- Sponsored By:
- January 26, 2010:
- The Wireless Threat: Introducing Wireless Security Misconceptions, Attacks and Vulnerabilities
- Sponsored By:
- January 26, 2010:
- Reserved - Katrina
- Sponsored By: Core Security Technologies
- January 22, 2010:
- The Impact of BSI-MM in Software Development Programs
- Sponsored By:
- January 20, 2010:
- Memory Analysis for Incident Responders and Forensic Analysts
- Sponsored By:
- January 18, 2010:
- The Porous Castle: Next Generation Application Attacks
- Sponsored By: Veracode
- January 14, 2010:
- Novell Sentinel Log Manager Review
- Sponsored By: NetIQ
- January 13, 2010:
- Sponsored By: Core Security Technologies
- January 12, 2010:
- Federal Desktop Core Configuration (FDCC): What is It? Should Enterprises Adopt It?
- Sponsored By: BigFix, Inc.
Instructions to Access SANS Information Security Webcasts:
SANS information security Webcasts are live web broadcasts that allow you to hear a knowledgeable speaker while viewing presentation slides.
SANS Tool Talks are special webcasts that offer an opportunity for you to hear from Information Security Vendors. At SANS we believe that you cannot accomplish Information Security tasks without tools. A surprising number of security professionals have no idea what technology is available in the marketplace. Tool Talks are designed to give you a solid understanding of a problem, and how a vendor's commercial tool can be used to solve or mitigate that problem.
You will need the following to attend a Webcast or listen to an archived Webcast.
- A SANS Portal account. If you don't have an account, just go to the SANS Portal page and fill in the simple registration form, it's free. Once you have an account you can also access an archive of past webcasts.
- Java version 6 or later. If you do not have Java installed you can download it here
- ElluminateLive, which is a Java application (free download is available on the webcast access page).
All previous Webcasts are available in the Webcast Archive. There you will find a recording of the Webcast and a PDF copy of the slides.
**We recommend you login to the webcast page early. If you have problems accessing the webcast, please check our Frequently Asked Questions. If you are still experiencing difficulties, contact us at webcast-support@sans.org as soon as possible. This will allow us time to help you before the webcast begins.
Note to Vendors:
If you are interested in sponsoring a future SANS Webcast, email sales@sans.org for more information.
Download or subscribe to the SANS webcast calendar.
