Train From Home on Your Schedule with OnDemand - Special Offers Available Now


Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.

Internet Storm Center Director Dr. Johannes Ullrich to Talk Honeypotting at SANS San Antonio Cyber Security Training Event

Will Arm Security Professionals with the Skills to Stay Ahead of Cyber Adversaries

  • Bethesda, MD
  • June 7, 2018

SANS Institute, the global leader in cyber security training, today announced the agenda for SANS San Antonio 2018 taking place August 6-11 in Texas. Courses will cover a variety of topics including cyber defense, ethical hacking, penetration testing, digital forensics, and ICS security. Evening talks will round out the agenda. Included among the talks is a discussion by Dr. Johannes Ullrich (@johullrich), Director of the SANS Internet Storm Center (ISC) entitled Nation State Level Honeypotting: Emulating Vulnerable Web Applications at Scale.

According to Dr. Ullrich, "The Internet Storm Center, in collaboration with DShield, has collected firewall data from sensors worldwide for more than 15 years. Over the last couple years we have included an ambitious new honeypot project in our sensor collection. This network distinguishes itself in agility and scale. Using a prototype of this system we can very quickly identify new vulnerabilities through the simulation of thousands of vulnerable systems (this can be done within hours and even minutes). Join me in San Antonio where I will share more about this exciting breakthrough, including our ability to thwart vulnerable populations of large nation states when it comes to vulnerabilities in frameworks like Weblogic, Drupal or the latest vulnerable crypto coin currencies."

In addition to his evening talk, Ullrich will teach the SEC503: Intrusion Detection In-Depth course. This course delivers the technical knowledge, insight, and hands-on training necessary to defend a network with confidence. Students will learn the core knowledge, tools, and techniques to defend networks with insight and awareness.

For additional information the SEC503: Intrusion Detection In-Depth course, or to register, visit:

All courses offered at SANS San Antonio 2018 are associated with GIAC certifications. Those new to cyber security will benefit from the SEC301: Introduction to Cyber Security and SEC401: Security Essentials Bootcamp Style courses. More seasoned professionals will benefit from courses like SEC560: Network Penetration Testing and Ethical Hacking and ICS515: ICS Active Defense and Incident Response.

For a complete list of courses and bonus evening talks, or to register for SANS San Antonio 2018, visit:

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at In-Person and Live Online cyber security training events, and more than 50 courses are available anytime, anywhere with our OnDemand platform. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system – the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (