BEGIN:VCALENDAR
VERSION:2.0
METHOD:PUBLISH
X-WR-CALNAME:SANS Webcasts
X-WR-TIMEZONE:GMT
CALSCALE:GREGORIAN
BEGIN:VTIMEZONE
TZID:GMT
LAST-MODIFIED:20100319T023001Z
END:VTIMEZONE
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:1
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93054
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93054
DTSTART:20100323T170000Z
SUMMARY:Automated Operating System Lockdown: Security Blanket 4.0 Review
DTEND:20100323T180000Z
DESCRIPTION:In complex enterprises\, maintaining critical server OS lockdown and state control is difficult to carry out manually. Learn how well TCS Security Blanket 4.0 automates OS assessment\, configuration and lockdown across Linux and Solaris server work groups based on a review by SANS Senior Analyst Dave Shackleford.     \n\nSpeaker(s): Dave Shackleford & George Kamis\nSponsored By: Trusted Computer Solutions (http://trustedcs.com/)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:1
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:2
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93339
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93339
DTSTART:20100324T150000Z
SUMMARY:Fighting Back with Computer Forensics
DTEND:20100324T160000Z
DESCRIPTION:During the last few years Computer Forensics technologies have been booming. Better processes\, deep research\, new techniques and innovative tools have made it possible for organizations and Law Enforcement to (somewhat) keep up with the ever increasing wave of sophisticated cyber-crime.   In this webcast Jess Garcia will present the latest trends in computer crime and how the latest developments in Computer Forensics can help your organization investigate such events\, mitigate their impact and (sometimes) catch the offenders. Walking through a set of real life case studies Jess will present a wide variety of tools and techniques\, putting them in the context of the overall Forensics Process.\n\nSpeaker(s): Jess Garcia
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:2
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:3
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93324
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93324
DTSTART:20100324T170000Z
SUMMARY:Social Zombies: Your Friends Want to Eat your Brains
DTEND:20100324T180000Z
DESCRIPTION:    \n\nSpeaker(s): Kevin Johnson
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:3
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:4
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93308
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93308
DTSTART:20100325T170000Z
SUMMARY:Automating firewall assessment and audits- Keep your firewalls secure and compliant in a fraction of the time 
DTEND:20100325T180000Z
DESCRIPTION:Are your firewalls configured to keep out threats?  Do you have an easy way to find and fix common firewall security gaps?   In this webcast\, learn how to avoid common firewall issues such as misconfigurations\, conflicting rules\, and more.  Joe Ford\, VP of Professional Services and CTO of Patriot Technologies\, explains how to automate the steps to assess\, audit\, and optimize your firewall deployment.\n\nSpeaker(s): Joe Ford and Michelle Johnson Cobb\nSponsored By: Skybox Security\, Inc. (http://www.skyboxsecurity.com/)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:4
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:5
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93214
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93214
DTSTART:20100329T220000Z
SUMMARY:State of the Hack 
DTEND:20100329T230000Z
DESCRIPTION:This "straight from the battlefield" presentation will provide case studies that describe in detail the most recent computer security incidents that Mandiant has responded to on behalf of the organizations.  The three or four anonymous in-depth case studies will be covered about the recent complex hacks against commercial and financial organizations.  The talk will go into how the intruders are gaining access\, what they are doing\, and a discussion of the malware used in the attacks. Finally\, we will discuss proper mitigation and prevention techniques that could be utilized in preventing these attacks.  \n\nSpeaker(s): Rob Lee
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:5
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:6
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93174
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93174
DTSTART:20100406T170000Z
SUMMARY:SANS Sixth Annual Log Management Survey, Part I More Log Data, More Uses
DTEND:20100406T180000Z
DESCRIPTION:  \n\nSpeaker(s): Jerry Shenk\, Sunil Bhargava\, and Hugh Njemanze\nSponsored By: ArcSight\, Inc. (http://www.arcsight.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:6
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:7
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93349
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93349
DTSTART:20100407T110000Z
SUMMARY:Top 7 Trends in Incident Response and Computer Forensics  
DTEND:20100407T120000Z
DESCRIPTION:The past several years have seen a dramatic turn in the capabilities of incident response teams and forensic practitioners. Join SANS Faculty Fellow\, Rob Lee\, on Tuesday\, April 13\, where Rob will discuss the 7 new trends in Incident Response and Computer Forensics that was polled from leaders in the forensic community. From Disk Encryption\, Live Analysis\, and PI licensing\, Rob will explain the major changes that have shaped digital forensic analysis. These trends face computer forensic and incident response personnel for both law enforcement and corporate investigators.\n\nSpeaker(s): Rob Lee
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:7
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:8
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93159
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93159
DTSTART:20100407T170000Z
SUMMARY:Database Monitoring - Beyond Compliance to Pro-active Information Protection
DTEND:20100407T180000Z
DESCRIPTION:Database Activity Monitoring plays an important part in various regulatory compliance mandates\, by monitoring and logging all database activity to ensure that sensitive data is being access appropriately\, and by the right people.   But DAM can also play a vital role in incident response processes.  When tightly integrated within an enterprise security management platform\, database monitoring provides valuable context that can be used to actively protect your network from data loss and fraud.  \n\nSpeaker(s): Mehlam Shakir\nSponsored By: NitroSecurity (http://www.nitrosecurity.com/)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:8
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:9
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93179
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93179
DTSTART:20100408T170000Z
SUMMARY:SANS Sixth Annual Log Management Survey, Part II: Deriving More Value from More Data
DTEND:20100408T180000Z
DESCRIPTION:  \n\nSpeaker(s): Jerry Shenk\, Andy Morris\, Tracy Hulver\, and Debbie Umbach\nSponsored By: LogLogic\, Inc. (http://www.loglogic.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:9
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:10
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93328
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93328
DTSTART:20100413T170000Z
SUMMARY:Application Whitelisting: Stop Tomorrow's Malware Today
DTEND:20100413T180000Z
DESCRIPTION:  \n\nSpeaker(s): Tom Murphy\nSponsored By: Bit9 (http://www.bit9.com/)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:10
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:11
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=92979
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=92979
DTSTART:20100414T170000Z
SUMMARY:
DTEND:20100414T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:11
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:12
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93329
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93329
DTSTART:20100419T170000Z
SUMMARY:Manipulating Web Application Interfaces
DTEND:20100419T180000Z
DESCRIPTION:Not much has changed since the beginning of the web application  penetration testing in terms of process for performing manual input  validation tests. Place a client proxy between the browser and the  application\, generate requests\, intercept them and modify the HTTP  parameters.  It's true that we have seen some nice improvements at the client proxy  level (compare the old Achilles to the last version of the Burp  suite)\, but the general approach still remains the same. This webcast will propose a new way to look at input data and a new  approach to manually test it. It will introduce Groundspeed\, a Firefox  add-on that allows the penetration tester to manipulate the interface  of web applications in order to adapt it to the penetration test  needs\, removing the annoying client-side limitations and making the  test more efficient.  \n\nSpeaker(s): Felipe Moreno
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:12
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:13
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93323
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93323
DTSTART:20100420T170000Z
SUMMARY:The State of Security Architecture Practices Today
DTEND:20100420T180000Z
DESCRIPTION: While the specialty field of "Information Security Architecture" is maturing and slowly gaining ground as a recognized specialty\, there are still many misconceptions about what it really means. For some\, the security architecture is often thought of as this magical black box that can be plugged in at any stage of the project\, especially near the end. Or worse yet\, some organizations feel security architecture is really just checking off items on a checklist list (e.g. strong passwords\, encrypted transport\, SoX Compliant) and if all the boxes are checked\, then the architecture must be secure.    In this presentation well look at the state of information security architecture today\, some of the common misconception about the practice and finally present a consensus outline of what a good security architecture practice entails.\n\nSpeaker(s): John Strand and Michele Guel
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:13
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:14
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93344
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93344
DTSTART:20100427T190000Z
SUMMARY:Cisco TrustSec Technical Overview
DTEND:20100427T200000Z
DESCRIPTION:Gain your edge.  Grow your expertise. Join this SANS Special Webcast hosted by Cisco to learn the inner works of Cisco TrustSec and how to make use of the full power of its policy\, identity and security capabilities.  In this live webinar\, we will discuss the newly expanded Cisco TrustSec solution and cover the following topics:  - Simplified 802.1X Deployment\, including broad use-case support and flexible deployment options (monitor\, low-impact and high-security modes).  - Topology-Independent Access Control\, delivered via Security Group Tagging technology and Security Group ACLs (SGACLs) throughout the infrastructure.  - End-to-end Monitoring \, Troubleshooting & Reporting with powerful functions to support data aggregation\, queries\, dashboard\,  integrated diagnostics and reporting.  - Secure Network Fabric\, providing Ethernet confidentiality and integrity based on open standards (802.1AE MACsec & 802.1X-REV) as well as Network Device Admission Control (NDAC) to allow only legitimate network devices to join the fabric.  We'll also answer your questions during this event.  So please mark your calendar and join us!\n\nSpeaker(s): Jason Halpern\nSponsored By: Cisco Systems (http://www.cisco.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:14
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:15
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93254
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93254
DTSTART:20100428T110000Z
SUMMARY:Defending Web Applications: Going back to to First Principles
DTEND:20100428T120000Z
DESCRIPTION:Modern network design usually includes a number of security elements like firewalls and intrusion detection systems. Sadly\, these defenses have shown to be ineffective against web application attacks. In this talk\, we will outline current attacks against web applications\, why they evade detection by network defenses and how to build defendable applications by going back to simple based defensive principles. Each of the attacks will be illustrated from a defensive as well as offensive point of few showing the strength and weakness of each defensive measure. \n\nSpeaker(s): Dr Johannes Ulrich and Jason Lam
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:15
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:16
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=92984
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=92984
DTSTART:20100512T170000Z
SUMMARY:
DTEND:20100512T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:16
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:17
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=92989
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=92989
DTSTART:20100609T170000Z
SUMMARY:
DTEND:20100609T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:17
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:18
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=92994
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=92994
DTSTART:20100714T170000Z
SUMMARY:
DTEND:20100714T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:18
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:19
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=92999
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=92999
DTSTART:20100811T170000Z
SUMMARY:
DTEND:20100811T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:19
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:20
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93004
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93004
DTSTART:20100908T170000Z
SUMMARY:
DTEND:20100908T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:20
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:21
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93009
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93009
DTSTART:20101013T170000Z
SUMMARY:
DTEND:20101013T180000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:21
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:22
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93014
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93014
DTSTART:20101110T180000Z
SUMMARY:
DTEND:20101110T190000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:22
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20100319T023001Z
UID:23
SEQUENCE:2
LOCATION:http://www.sans.org/webcasts/show.php?webcastid=93019
URL;VALUE=URI:http://www.sans.org/webcasts/show.php?webcastid=93019
DTSTART:20101208T180000Z
SUMMARY:
DTEND:20101208T190000Z
DESCRIPTION:Description not available\n\nSpeaker(s): Johannes Ullrich\nSponsored By: Core Security Technologies (http://www.coresecurity.com)
BEGIN:VALARM
ACTION:DISPLAY
ACTION:AUDIO
X-WR-ALARMUID:23
ATTACH;VALUE=URI:Basso
TRIGGER:-PT10M
END:VALARM
END:VEVENT
END:VCALENDAR