Train From Home on Your Schedule with OnDemand - Special Offers Available Now


Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.

Digital Forensic Expert Alissa Torres to Detail How to Build a Better Blue Team through Attack Simulation at SANS Las Vegas Cyber Security Training Event

Courses to Be Offered for Security Professionals at Every Level

  • Bethesda, MD
  • July 18, 2018

SANS Institute, the global leader in cyber security training, today announced the agenda for one of its biggest training events of the year, SANS Network Security 2018 (#SANSNetworkSecurity). Taking place September 23-30 in Las Vegas, the event features more than 45 security courses and 15 evening talks. Included among the evening talks is a discussion by digital forensic expert Alissa Torres (@sibertor) - "Could We Have Stopped This?" Attack Simulations for Blue Team Hardening.

"Vetting enterprise threat detection and response capabilities through attacker emulation is a critical element in ascertaining an organizations security posture. With incredible technical efforts and budgetary expenditure dedicated to defense and detection, ensuring the efficacy of these implementations is imperative, says Torres. Emulating an attacker TTPs can be challenging even for an experienced red team. Employing threat activity chains that incorporate realistic methods of gaining initial access, privilege escalation and lateral movement as seen in sophisticated adversary attacks requires a deep level of technical expertise and planning. Fortunately, over the last few years, several free open-source automated threat emulation tools have been released. Join me in Las Vegas where I will showcase the rapid evolution of these tools and how they can best be employed by blue teams today."

In addition to her talk, Torres will teach FOR526: Memory Forensics In-Depth course. This course provides the critical skills necessary for digital forensics examiners and incident responders to successfully perform live system memory triage and analyze captured memory images. For additional information on the FOR526: Memory Forensics In-Depth course, or to register, visit:

SANS Network Security 2018 offers courses for security professionals at every level. Those new to security will benefit from courses like SEC301: Introduction to Cyber Security and SEC401: Security Essentials Bootcamp Style. More seasoned professionals will benefit from courses such as SEC542: Web App Penetration Testing and Ethical Hacking, SEC573: Automating Information Security with Python, and SEC575: Mobile Device Security and Ethical Hacking. Attendees can also select from four types of SANS NetWars challenges: Core, Cyber Defense, DFIR and ICS.

For a complete list of courses and evening talks, or to register for SANS Network Security 2018, visit:

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at In-Person and Live Online cyber security training events, and more than 50 courses are available anytime, anywhere with our OnDemand platform. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system – the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (