Three More Days to Get an iPad Air w/ Smart Keyboard with any 5 or 6 Day SANS Training - Register Today!

Northern VA Winter - Reston 2018

Reston, VA | Mon, Jan 15 - Sat, Jan 20, 2018
This event is over,
but there are more training opportunities.
 

Monitoring and Incident Response on a Shoestring Budget

  • Joff Thyer
  • Thursday, January 18th, 7:15pm - 8:15pm

As pen testers, we are familiar with the techniques used to attack an environment. Knowing these techniques informs us with respect to various methods of potential detection. In fact, we are often asked by our clients what they could have done to detect the methods we used to successfully compromise their environment. There are so many great community projects out there that allow defenders to assemble their own toolkit for tactical, and focused environment monitoring. In talk, I will cover a continuing evolution of how you can use free and open source tools to help detect potential attackers in your network.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, January 15
Session Speaker Time Type
General Session - Welcome to SANS Paul Henry Monday, January 15th, 8:00am - 8:30am Special Events
OBSESSED - How to Be Wildly Successful Dr. Eric Cole Monday, January 15th, 7:15pm - 9:15pm Keynote
Tuesday, January 16
Session Speaker Time Type
Blockchain: the New Digital Swiss Army Knife? G. Mark Hardy Tuesday, January 16th, 7:15pm - 8:15pm SANS@Night
Wednesday, January 17
Session Speaker Time Type
Kill Chain Paul Henry Wednesday, January 17th, 7:15pm - 8:15pm SANS@Night
Thursday, January 18
Session Speaker Time Type
Monitoring and Incident Response on a Shoestring Budget Joff Thyer Thursday, January 18th, 7:15pm - 8:15pm SANS@Night
This event is over,
but there are more training opportunities.
 
Downloads
Share
Latest Whitepapers

Recognizing Suspicious Network Connections with Python
By Gregory Melton

Examining Sysmon's Effectiveness as an EDR Solution
By Christian Vrescak

Replacing WINS in an Open Environment with Policy Managed DNS Servers
By Mark Lucas

Last 25 Papers »

Latest Tweets @SANSInstitute

Interactive #SANSLiveOnline training is led by industry expe [...]
April 17, 2021 - 11:30 PM

Join @benjaminwright & John Pescatore at this year's @RS [...]
April 17, 2021 - 9:20 PM

During this #TechTuesday workshop @SergeBorso will take a lo [...]
April 17, 2021 - 3:05 PM

Contact Us

Mon-Fri: 9am-8pm ET (phone/email)
Sat-Sun: 9am-5pm ET (email only)
301-654-SANS(7267)
info@sans.org

"This has been a great way to get working knowledge that would have taken years of experience to learn."
- Josh Carlson, Nelnet

"The perfect balance of theory and hands-on experience."
- James D. Perry II, University of Tennessee

"Expertise of the trainer is impressive, real life situations explained, very good manuals. Best training ever!"
- Jerry Robles de Medina, Godo CU