| Date |
Title |
Sponsor |
Speaker |
December 20, 2016
1:00pm EST
(18:00:00 UTC) | 2016 Security Awareness Year in Review - Looking Ahead to 2017 | Lance Spitzner |
December 19, 2016
3:00pm EST
(20:00:00 UTC) | SEC555 - The Industry's First Neutral SIEM Training Course | Justin Henderson |
December 15, 2016
12:30pm EST
(17:30:00 UTC) | The Data Disconnect: Why All Security Ratings are Not Created Equal | Dave Shackleford, Stephen Boyer |
December 14, 2016
3:00pm EST
(20:00:00 UTC) | Winning the Culture War: Infusing Security into the Software Development Culture | Setu Kulkarni, Mark Geeslin |
December 14, 2016
1:00pm EST
(18:00:00 UTC) | Defending Against Fileless Malware | Amit Serper, Matt Bromiley |
December 14, 2016
11:00am EST
(16:00:00 UTC) | Cyber Threat Intelligence: Hurricanes and Earthquakes | Jonathan Couch |
December 13, 2016
3:00pm EST
(20:00:00 UTC) | Secrets to a Successful Phishing Program | Lance Spitzner |
December 13, 2016
1:00pm EST
(18:00:00 UTC) | 2016 Cybersecurity Trends Year in Review: Avoiding the Threats and Mistakes of 2016 to Have a More Secure 2017 | John Pescatore |
December 9, 2016
3:00pm EST
(20:00:00 UTC) | A Case Study: Developing an Innovative ICS Security Program and Real-Time OT Monitoring Capability for Oil and Gas Infrastructures | Greg Villano, Matt Morris, Patrick McBride |
December 9, 2016
1:00pm EST
(18:00:00 UTC) | Hummingbad: Tools & Techniques To Use When Inspecting Android Applications | Chris Crowley, Cindy Murphy |
December 8, 2016
3:00pm EST
(20:00:00 UTC) | Speed and Scalability Matter: SANS Review of LogRhythm 7 SIEM and Analytics Platform | Dave Shackleford, Seth Goldhammer |
December 8, 2016
1:00pm EST
(18:00:00 UTC) | Part 2 | SANS Security Analytics Survey Results: What's Working? What's Not? | Dave Shackleford, Kinshuk Pahare, Mike Reagan |
December 8, 2016
11:00am EST
(16:00:00 UTC) | Let's plan an APT | Roi Abutbul |
December 7, 2016
3:00pm EST
(20:00:00 UTC) | You Can't Stop What You Cant SOC | John Pescatore, Sridhar Karnam |
December 7, 2016
1:00pm EST
(18:00:00 UTC) | Security Analytics in Action: SANS Fourth Annual Security Analytics Survey - Part 1 | Travis Farral, Dave Shackleford, Matt Hathaway, Javvad Malik |
December 6, 2016
3:00pm EST
(20:00:00 UTC) | Throwback: How Social Media has Ushered a Re-emergence of Traditional Espionage Tradecraft (and how defenders can exploit it) | Michael Cloppert |
December 6, 2016
1:00pm EST
(18:00:00 UTC) | Fight Advanced Persistent Threats in ICS with Applied Trickery | Bryce Galbraith |
December 5, 2016
3:00pm EST
(20:00:00 UTC) | Opening a can of Active Defense and Cyber Deception to confuse and frustrate attackers | Chris Pizor, Ed Skoudis, John Strand |
December 2, 2016
1:00pm EST
(18:00:00 UTC) | Redefining Endpoint Incident Response with Behavioral Analysis | Michael Angelo Vien, John Pescatore |
December 2, 2016
11:00am EST
(16:00:00 UTC) | Closing the Cyber Skills Gap: The Security Team Force Multiplier | Deron Grzetich, Louis Yeck, Amy Blackshaw |
December 1, 2016
11:00am EDT
(16:00:00 UTC) | The Art of Blocking Never-Before-Seen Ransomware | Uri Sternfeld, Jake Williams |
November 29, 2016
1:00pm EST
(18:00:00 UTC) | Top Methods Pen Testers Use to Socially Engineer Their Way In | Lance Spitzner, Dave Shackleford |
November 21, 2016
3:00pm EST
(20:00:00 UTC) | Infosec Rock Star: Geek Will Only Get You So Far | Ted Demopoulos |
November 21, 2016
1:00pm EST
(18:00:00 UTC) | FOR508 - Advanced Incident Response and Threat Hunting Course Updates: Hunting Guide | Rob Lee |
November 18, 2016
8:25am EST
(13:25:00 UTC) | SANS Federal Government Cyber Security Briefing: How to Avoid Being the Next Agency to Announce a Major Breach | |
November 16, 2016
3:00pm EST
(20:00:00 UTC) | The Art of Risk Mitigation Through Holistic Security Analytics | Russ Lowenthal |
November 16, 2016
11:00am EST
(16:00:00 UTC) | Physical Security - Everything That's Wrong With Your Typical Door | Deviant Ollam |
November 15, 2016
3:00pm EST
(20:00:00 UTC) | DevSecOps and the Cloud Security Gap | Sami Laine, Dave Shackleford |
November 15, 2016
1:00pm EST
(18:00:00 UTC) | Vulnerabilities, Controls and Continuous Monitoring: The SANS 2016 Continuous Monitoring Survey | Barbara Filkins, Scott Gordon, Dan Lamorena, Patrick Vowles, Martin Walker |
November 11, 2016
11:00am EST
(16:00:00 UTC) | Implementing the 5th Critical Security Control: Controlled Use of Administrative Privilege | Paul Ackerman |
November 10, 2016
1:00pm EDT
(18:00:00 UTC) | Endpoint Detection and Response - The Final Frontier: Why EDR is essential to your security operations | Dan Chapman, Justin Lachesky |
November 9, 2016
3:00pm EST
(20:00:00 UTC) | Taking Action: Effective Measures of Defense | Richard Ford, Eric Cole |
November 9, 2016
1:00pm EST
(18:00:00 UTC) | 8 Ways To Watch The Invisible: Analyzing Encrypted Network Traffic | Johannes Ullrich |
November 9, 2016
11:00am EST
(16:00:00 UTC) | FOR572 Course Update from the Future - Where Were Going, We Dont Need Roads | Philip Hagen |
November 7, 2016
1:00pm EST
(18:00:00 UTC) | Seeing Over the Horizon: Predictive and Preventive Security Based on the Kill-Chain Model | Tim Helming, Mike Cloppert |
November 3, 2016
1:00pm EDT
(17:00:00 UTC) | Ready to Replace AV? Criteria to Evaluate NGAV Solutions | Neil Boland, Greg Notch, Barbara Filkins, J. Michael Butler |
November 2, 2016
1:00pm EDT
(17:00:00 UTC) | The Fusion of IT and OT Security: What You Need to Know | Rebecca Lawson, Derek Harp, Bengt Gregory-Brown |
November 2, 2016
11:00am EDT
(15:00:00 UTC) | Practical ICS Cyber Security for the Process Industry | Jim Gilsinn, James McGlone |
October 27, 2016
1:00pm EDT
(17:00:00 UTC) | The Human Factor in the Age of Cyber Conflict | Sean Brady, Lance Spitzner |
October 26, 2016
1:00pm EDT
(17:00:00 UTC) | Prioritizing and Planning to Ensure a High-Impact SOC Rollout | Brent Hambly, John Pescatore |
October 26, 2016
11:00am EDT
(15:00:00 UTC) | The Most Common Human Incidents - A Forensicator's Tale | Lance Spitzner, Matt Bromiley |
October 25, 2016
1:00pm EDT
(17:00:00 UTC) | Packet Capture + Flow Analytics = Holistic Network Visibility | Brian Ford |
October 24, 2016
1:00pm EDT
(17:00:00 UTC) | Prioritizing the CIS Critical Controls for ICS: Learning from recent incidents | Walt Sikora, Mike Assante, Tim Conway |
October 21, 2016
3:00pm EDT
(19:00:00 UTC) | Intro to SDR Projects: Have Fun Before You Get Serious | Larry Pesce |
October 21, 2016
1:00pm EDT
(17:00:00 UTC) | How Security Analysts Master Incident Response with Behavioral Analytics | Orion Cassetto, Andy Skrei |
October 21, 2016
11:00am EDT
(15:00:00 UTC) | The State of Vulnerability Discovery - How Bug Bounties Are Actually Making a Difference | David Baker, Casey Ellis, John Pescatore |
October 20, 2016
1:00pm EDT
(17:00:00 UTC) | From the Trenches, the SANS 2016 Survey on Security and Risk in the Financial Sector: Part 2 Securing Financial Environments | Sandeep Kumar , Anthony Di Bello, G. Mark Hardy, Anil Nandigam |
October 19, 2016
1:00pm EDT
(17:00:00 UTC) | From the Trenches, the SANS 2016 Survey on Security and Risk in the Financial Sector: Part 1 Incidents, Risks and Preparedness | G. Mark Hardy, Mike Goldgof, Arabella Hallawell |
October 18, 2016
1:00pm EDT
(17:00:00 UTC) | What's New for Security in Windows Server 2016? | Jason Fossen |
October 18, 2016
11:00am EDT
(15:00:00 UTC) | They Can Run, But They Can't Hide: Real-Time Threat Hunting Using Passive DNS | Dr. Paul Vixie, Dave Shackleford |
October 17, 2016
1:00pm EDT
(17:00:00 UTC) | Designing and Building a SOC: In-house vs. Out-Sourcing | Chris Crowley |
October 14, 2016
8:30am EDT
(12:30:00 UTC) | SANS Financial Services Security Vendor Briefing | |
October 13, 2016
1:00pm EST
(17:00:00 UTC) | The Internet of Evil Things: How to Detect and Secure Your Vulnerable Devices from the Mirai Botnet | Johannes Ullrich |
October 12, 2016
1:00pm EDT
(17:00:00 UTC) | Security and Accountability in the Cloud, the SANS 2016 Cloud Security Survey: Part 2 - Changes in Cloud Security | Steve Grossenbacher, Dave Shackleford, Salim Hafid, Matt Hathaway |
October 12, 2016
11:00am EDT
(15:00:00 UTC) | Continuous Opportunity: DevOps & Security | Ben Allen |
October 11, 2016
1:00pm EDT
(17:00:00 UTC) | Security and Accountability in the Cloud, the SANS 2016 Cloud Security Survey: Part 1 - Breach Landscape and the Top Threats and Challenges | Mark Campbell, Dave Shackleford, Sami Laine |
October 11, 2016
11:00am EDT
(15:00:00 UTC) | EHR Vulnerability Reporting A Cause for Concern? | Greg Porter |
October 10, 2016
9:00pm EDT
(01:00:00 UTC) | Lets Talk Cyber Security | My-Ngoc Nguyen, Dr. Eric Cole |
October 6, 2016
1:00pm EDT
(17:00:00 UTC) | Taking Action Against Insider Threats | Josh Ablett, Eric Cole |
October 5, 2016
1:00pm EDT
(17:00:00 UTC) | 2016 Office 365 Security & Risk Benchmarks Report | Brandon Cook, John Pescatore |
October 4, 2016
1:00pm EDT
(17:00:00 UTC) | Bring 5 of the top CIS Critical Security Controls to Life! | Ken Robinson, Jennifer Ellard |
September 28, 2016
1:00pm EDT
(17:00:00 UTC) | MobileIron Security Labs: Combatting Rising Mobile Threats | James Plouffe |
September 27, 2016
10:00am EDT
(14:00:00 UTC) | Sneak Peek for the European Security Awareness Summit | Chris Boyd, Masha Sedova, Lance Spitzner |
September 26, 2016
3:00pm EDT
(19:00:00 UTC) | Going Mobile: Are Your Apps Putting You at Risk? | Eric Johnson |
September 22, 2016
3:00pm EST
(19:00:00 UTC) | Compliance Automation with OpenSCAP | Robin Price II |
September 22, 2016
11:00am EDT
(15:00:00 UTC) | Monitoring the Most Interesting Network in the World: Insights from the Black Hat NOC | Scott Carter, Neil R. Wyler |
September 21, 2016
1:00pm EDT
(17:00:00 UTC) | Hardening Microservices Security: Building a Layered Defense Strategy | Matthew Silverlock, David Hoelzer |
September 21, 2016
11:00am EDT
(15:00:00 UTC) | Process Hunting with Microsoft AppLocker: Application Whitelisting is the Killer App | James Tarala |
September 20, 2016
10:00pm EDT
(02:00:00 UTC) | Welcome Threat Hunters, Phishermen, and Other Liars | Rob Lee |
September 20, 2016
3:00pm EDT
(19:00:00 UTC) | SOC Fundamentals for Your Threat Intelligence Program | Glenn Wong, Chris Crowley |
September 20, 2016
1:00pm EDT
(17:00:00 UTC) | Threat Intelligence: What It Is, and How to Use It Effectively | Stephen Gates, Matt Bromiley |
September 19, 2016
11:00am EDT
(15:00:00 UTC) | Evasive malware is everywhere: Learn how it works and how to prevent it. | Omri Moyal, John Pescatore |
September 15, 2016
9:00pm EST
(01:00:00 UTC) | How to Target Critical Infrastructure: The Adversary Return on Investment from an Industrial Control System | Matthew Hosburgh |
September 15, 2016
1:00pm EDT
(17:00:00 UTC) | Injecting a node.js app using NoSQL and Query Selector Injection | Aaron Cure |
September 13, 2016
1:00pm EDT
(17:00:00 UTC) | Breach Detected! Could It Have Been Prevented? | Barbara Filkins, Scott Simkin |
September 8, 2016
8:00pm EST
(00:00:00 UTC) | Real World Phishing & Exploitation | Phillip Bosco |
September 8, 2016
1:00pm EDT
(17:00:00 UTC) | Hunting 101 - Back to Basics: Implementing a Proactive Cyber Hunting Approach | Brad Mecha, Dave Shackleford |
September 8, 2016
11:00am EDT
(15:00:00 UTC) | Navigating SANS Pen Test Cheat Sheets for Fun and Profit | Ed Skoudis |
September 7, 2016
12:00pm EDT
(16:00:00 UTC) | CISO Hot Topic Lunch Session: Communicating Cybersecurity Effectively to CEOs and Boards of Directors | John Pescatore, Alan Paller |
September 7, 2016
9:00am EDT
(13:00:00 UTC) | 2016 Threat Landscape Survey Report: Europe Edition | Polomi Batra, Lee Neely |
September 6, 2016
1:00pm EDT
(17:00:00 UTC) | Incorporating ICS Cybersecurity Into Water Utility Master Planning | Jason Dely |
August 31, 2016
1:00pm EDT
(17:00:00 UTC) | Top Office 365 Mail Vulnerabilities: Attacks on your Users Right Now | Kip James, Michael Landewe |
August 30, 2016
1:00pm EDT
(17:00:00 UTC) | National Cyber Security Awareness Month Toolkit | Cathy Click, Lance Spitzner |
August 29, 2016
1:00pm EDT
(17:00:00 UTC) | CISO Success Strategies | Frank Kim |
August 25, 2016
8:00pm EDT
(00:00:00 UTC) | Prioritizing Cybersecurity with the Critical Security Controls | Wes Whitteker |
August 25, 2016
1:00pm EDT
(17:00:00 UTC) | Intelligent Network Security | Tom Byrnes, Jake Williams |
August 24, 2016
1:00pm EDT
(17:00:00 UTC) | Using an Attacker Technique-Based Approach for Prevention | Mike Nichols, Dave Shackleford |
August 23, 2016
1:00pm EDT
(17:00:00 UTC) | Cyber-Hygiene and Standards of Care: Practical Defenses for Healthcare | James Tarala |
August 23, 2016
11:00am EDT
(15:00:00 UTC) | A Credit Union Detected LAN Turtle Attacks in Seconds with Network Access Control from Great Bay Software Beacon | Jeremy Taylor, John Pescatore |
August 18, 2016
3:00pm EDT
(19:00:00 UTC) | Practical Open Source Intelligence: Six Tips for Starting an Effective Investigation | Micah Hoffman |
August 18, 2016
1:00pm EDT
(17:00:00 UTC) | In Detection, the Only Thing That Matters Is Results | Kasey Cross, David Thompson, Dave Shackleford |
August 17, 2016
1:00pm EDT
(17:00:00 UTC) | The State of Cyber Threat Intelligence: Part 2: The Value of CTI | Rebekah Brown, Dave Shackleford, Mark Doering, Aaron Shelmire |
August 16, 2016
10:00pm EDT
(02:00:00 UTC) | Designing and Building a SOC: Management Fundamentals | Christopher Crowley |
August 16, 2016
1:00pm EDT
(17:00:00 UTC) | The State of Cyber Threat Intelligence: Part 1: How Cyber Threat Intelligence Is Consumed and Processed | Dave Shackleford, Arabella Hallawell, Javvad Malik, Chip Witt |
August 15, 2016
11:00am EDT
(15:00:00 UTC) | Establishing Street Cred: Fundamental Security Concepts (Hint: Its Not About Technology) | Ted Demopoulos |
August 12, 2016
9:30am EDT
(13:30:00 UTC) | SANS Threat Intelligence Vendor Briefing | Robert M. Lee |
August 11, 2016
1:00pm EDT
(17:00:00 UTC) | 2016 Threat Landscape Survey Report | Polomi Batra, Lee Neely |
August 10, 2016
3:00pm EDT
(19:00:00 UTC) | Running a Better Red Team Through Understanding ICS/SCADA Adversary Tactics | Robert M. Lee |
August 10, 2016
1:00pm EDT
(17:00:00 UTC) | Time is on your side: username harvesting via timing attacks | Eric Conrad |
August 9, 2016
1:00pm EDT
(17:00:00 UTC) | A Sneak Peek at Pokémon Go Forensic Artifacts | Cindy Murphy |
August 5, 2016
1:00pm EDT
(17:00:00 UTC) | Designing and Building a SOC: Management Fundamentals | Christopher Crowley |
August 2, 2016
11:00am EDT
(15:00:00 UTC) | Demystifying Cyber Attacks on ICS: How They Work and How to Use Engineered and Cyber Layer of Protections | Bryan L. Singer, CISSP, CAP |
July 29, 2016
1:00pm EDT
(17:00:00 UTC) | Pokémon Go - What To Tell Employees | Jacob Wilson, Thomas McHahon, Jennifer Miller, Lance Spitzner |
July 28, 2016
1:00pm EDT
(17:00:00 UTC) | Get Ready for NCSAM 2016 | Michael Kaiser, Lance Spitzner |
July 28, 2016
11:00am EDT
(15:00:00 UTC) | Illuminate Your Network with Security Analytics | Andrew Wild |
July 26, 2016
5:20pm EDT
(21:20:00 UTC) | ICS-Houston Security Briefing | |
July 21, 2016
1:00pm EDT
(17:00:00 UTC) | Health Care Provider Breaches and Risk Management Roadmaps: Part 2 - Health Care Security from the Top Down | Sandeep Kumar , Ed Cabrera, Barbara Filkins, Christopher Strand |
July 20, 2016
1:00pm EDT
(17:00:00 UTC) | Health Care Provider Breaches and Risk Management Roadmaps: Part 1 - Health Care Security from the Bottom Up | Mike Goldgof, Barbara Filkins, Hugh Njemanze, Ty Powers |
July 19, 2016
3:00pm EDT
(19:00:00 UTC) | Incident or Breach? | Hal Pomeranz, Benjamin Wright |
July 19, 2016
11:00am EDT
(15:00:00 UTC) | Why Layered Security Strategies Do Not Work and What You Can Do About It | Navneet Singh |
July 14, 2016
3:00pm EDT
(19:00:00 UTC) | Ransomware & Malvertising: Dominating the Threat Landscape | Adam Kujawa, Dana Torgersen, John Pescatore |
July 14, 2016
11:00am EDT
(15:00:00 UTC) | Case Study: See How Aruba Networks Uses Bug Bounties to Discover Vulnerabilities, Faster | Leif Dreizler, John Pescatore, Jon Green |
July 13, 2016
12:00pm EDT
(16:00:00 UTC) | Decision Criteria and Analysis for Hardware-Based Encryption | Eric Cole, John Grimm |
July 12, 2016
1:00pm EDT
(17:00:00 UTC) | Beyond Infiltration: Conquering all Stages of the Attack Lifecycle | Lotem Guy , John Pescatore |
July 5, 2016
1:00pm EDT
(17:00:00 UTC) | Internet of Things (IoT) and Embedded Device Security Research - A Primer | Billy Rios |
June 30, 2016
3:00pm EST
(19:00:00 UTC) | What You Need to Know: iOS 10 Security | Joshua Wright |
June 30, 2016
1:00pm EST
(17:00:00 UTC) | Going Mobile: Are your apps putting you at risk? | Gregory Leonard |
June 29, 2016
1:00pm EDT
(17:00:00 UTC) | Where Are We Now?: The SANS 2016 ICS Survey | Derek Harp, Bengt Gregory-Brown, Arabella Hallawell, David Meltzer, Christopher Strand, Jason Trost |
June 29, 2016
11:00am EST
(15:00:00 UTC) | Continuous Opportunity: DevOps & Security | Ben Allen |
June 22, 2016
1:00pm EDT
(17:00:00 UTC) | The End of IOCs: A Case Study on Resolving Persistent Attacks Using Tactics, Techniques, and Procedures (TTPs) | Israel Barak, Dave Shackleford |
June 21, 2016
1:00pm EDT
(17:00:00 UTC) | Bridging the Insurance/InfoSec Gap: The SANS 2016 Cyber Insurance Survey | Barbara Filkins, Benjamin Wright, Dave Bradford, Julian Waits |
June 20, 2016
1:00pm EDT
(17:00:00 UTC) | Malware Analysis and Adversary Infrastructure Mapping: A One-Two Punch | Tim Helming, Alissa Torres |
June 20, 2016
11:00am EST
(15:00:00 UTC) | What we all need to learn from recent ICS incidents | Mike Assante, Tim Conway |
June 15, 2016
3:00pm EDT
(19:00:00 UTC) | Warning: Email may be Hazardous to your business | John Devenyns |
June 15, 2016
1:00pm EDT
(17:00:00 UTC) | MobileIron Mobile Security and Risk Review Research Results | David Schwartzberg |
June 14, 2016
1:00pm EDT
(17:00:00 UTC) | The Case for PIM/PAM in Today's Infosec | Ken Ammon, Barbara Filkins |
June 10, 2016
11:00am EDT
(15:00:00 UTC) | How is User Risk Mitigation achieved? Achieving user risk mitigation-stopping the insider threat | Daniel Velez, Dr. Eric Cole |
June 9, 2016
8:00pm EDT
(00:00:00 UTC) | No Python Allowed: learning a whole new language to sell the Critical Security Controls | Paul Hershberger |
June 9, 2016
1:00pm EDT
(17:00:00 UTC) | Incident Response Capabilities in 2016 - Part 2: Emerging Trends in Incident Response and Survey Results | Matt Bromiley, Jack Doyle, Rob Lee, Mark Painter, Arabella Hallawell, Ryan Sommers |
June 8, 2016
1:00pm EDT
(17:00:00 UTC) | Incident Response Capabilities in 2016 - Part 1: The Current Threat Landscape and Survey Results | Matt Bromiley, Rob Lee, Don Shin, Tamar Shafler, Ismael Valenzuela, Ann Sun |
June 7, 2016
1:00pm EDT
(17:00:00 UTC) | ICS Network Segmentation | Dan Morrow, Brett Young |
June 3, 2016
1:00pm EST
(17:00:00 UTC) | (Am)Cache rules everything around me | Eric Zimmerman |
June 2, 2016
1:00pm EDT
(17:00:00 UTC) | A Blueprint to Secure SAP Applications Using CIS Controls As a Guide | Barbara Filkins, Alex Horan |
May 31, 2016
1:00pm EDT
(17:00:00 UTC) | Sneak Peek for the 2016 Security Awareness Summit | Lance Spitzner |
May 26, 2016
3:00pm EDT
(19:00:00 UTC) | Effective Monitoring and Defense in Financial Services | Lawrence Chin, David Hoelzer |
May 26, 2016
1:00pm EDT
(17:00:00 UTC) | What Works in Threat Prevention: Detecting and Stopping Attacks more Accurately and Quickly with Threatstop | Kenneth Compres, John Pescatore |
May 25, 2016
1:00pm EDT
(17:00:00 UTC) | Why So Many Endpoint Attacks Are Still Going Undetected - And What You Can Do About It | Mark Stacey, Chris Ahearn, John Pescatore |
May 24, 2016
1:00pm EDT
(17:00:00 UTC) | A New Perspective on Patch Management | Marcelo Pereira, John Pescatore |
May 24, 2016
11:00am EDT
(15:00:00 UTC) | iOS Location Forensics | Sarah Edwards |
May 20, 2016
1:00pm EDT
(17:00:00 UTC) | Next Level in Cyber Threat Intelligence Training: New FOR578 | Robert M. Lee |
May 19, 2016
1:00pm EDT
(17:00:00 UTC) | How to Negotiate a Cyber Insurance Policy | Amy Elizabeth Stewart, Benjamin Wright |
May 19, 2016
11:00am EDT
(15:00:00 UTC) | systemd and You! | Hal Pomeranz |
May 18, 2016
1:00pm EDT
(17:00:00 UTC) | Scapy and Snort, Packet Peanut Butter and Jelly | Judy Novak, Mike Poor |
May 18, 2016
11:00am EDT
(15:00:00 UTC) | Are you serious? Now I have to worry about BYoD and IoT threats? | Yolonda Smith, Paul Paget, John Pescatore |
May 17, 2016
7:00pm EDT
(23:00:00 UTC) | 2016 Security Awareness Report (Special APAC Edition) | Lance Spitzner |
May 17, 2016
3:00pm EDT
(19:00:00 UTC) | Practical and Open Source Threat Intelligence | James Tarala |
May 17, 2016
12:00pm EDT
(16:00:00 UTC) | Windows Exploratory Surgery with Process Hacker | Jason Fossen |
May 16, 2016
1:00pm EDT
(17:00:00 UTC) | Shell items, More than Meets the Eye | David Cowen |
May 13, 2016
1:00pm EDT
(17:00:00 UTC) | Know Normal, Find Evil: Windows 10 Memory Forensics Overview | Alissa Torres |
May 12, 2016
1:00pm EDT
(17:00:00 UTC) | Why Train and Who to Train for Education and Government | Randy Marchany, Lance Spitzner |
May 11, 2016
1:00pm EDT
(17:00:00 UTC) | Using the Critical Security Controls to Prevent Ransomware in Healthcare | Matthew Mellen, James Tarala |
May 11, 2016
11:00am EDT
(15:00:00 UTC) | This phish goes to 11, w/ Guest: SNOW [DEF CON 22 Social Engineering CtF - Black Badge Winner] | Stephanie Carruthers |
May 10, 2016
1:00pm EDT
(17:00:00 UTC) | Connecting the Dots Between Your Threat Intelligence Tradecraft and Business Operations | Adam Meyer, John Pescatore |
May 3, 2016
1:00pm EDT
(17:00:00 UTC) | Learn to Trust Your Insecure ICS Networks | David Mattes, Lisa Lorenzin |
April 28, 2016
1:00pm EDT
(17:00:00 UTC) | Cracking the Code on SaaS Security & Compliance | Brandon Cook |
April 28, 2016
11:00am EDT
(15:00:00 UTC) | Analyzing Analytics: Turning Big Data into Security Intelligence | Tim (TK) Keanani |
April 27, 2016
3:00pm EDT
(19:00:00 UTC) | How to Produce a World-Class Threat Intelligence Capability From Scratch | Levi Gundert, John Pescatore |
April 27, 2016
1:00pm EDT
(17:00:00 UTC) | Managing Applications Securely: A SANS Survey | Johannes Ullrich, Amit Ashbel, Tim Jarrett, Ryan O'Leary |
April 27, 2016
10:00am EDT
(14:00:00 UTC) | Stopping CEO Fraud | FBI, Special Agent Cyber Crimes Division, Lance Spitzner |
April 26, 2016
1:00pm EDT
(17:00:00 UTC) | 2016 Security Awareness Report Findings - How STH is Helping You | Dan deBeaubien, Danielle Ventre-Olson, Lisa Murray-Johnson, Lance Spitzner |
April 26, 2016
11:00am EDT
(15:00:00 UTC) | Overcome Privilege Management Obstacles with CSC v. 6 | Jon Wallace, John Pescatore |
April 25, 2016
3:00pm EDT
(19:00:00 UTC) | Are network-centric practices undermining your SOC? | Brandie Anderson |
April 22, 2016
1:00pm EDT
(17:00:00 UTC) | DNS Evidence: You Dont Know What Youre Missing | Philip Hagen |
April 20, 2016
2:00pm EDT
(18:00:00 UTC) | Securing the Internet of Old Things (IoOT) | Jean-Philippe Taggart, Dana Torgersen, G.W. Ray Davidson, PhD |
April 19, 2016
11:00pm EDT
(03:00:00 UTC) | SANS Asia-Pacific Webcast Series- Basic Mobile Application Reverse Engineering and a Free Trip to Vegas | Tim Medin |
April 19, 2016
3:00pm EDT
(19:00:00 UTC) | Security Leadership: How to Increase the Success of Your Projects | Jeff Frisk |
April 15, 2016
1:00pm EDT
(17:00:00 UTC) | Open Season on Cyberthreats: Part 2- Threat Hunting Methodologies and Tools | Ely Kahn, Eric Cole, Tim Helming, Mike Nichols |
April 14, 2016
3:00pm EDT
(19:00:00 UTC) | 2016 Awareness Report - Lessons Learned for Education and State / Local Government | Ashley Sudderth, Mark Evans, Lance Spitzner |
April 14, 2016
1:00pm EDT
(17:00:00 UTC) | Open Season on Cyberthreats: Part I- Threat Hunting 101 | Ryan Cason, Eric Cole, Mark Painter, Dana Torgersen |
April 13, 2016
1:00pm EDT
(17:00:00 UTC) | BadLock: What you need to know | Chris Wysopal, Johannes Ullrich, PhD |
April 13, 2016
11:00am EDT
(15:00:00 UTC) | HTTP/2 & Websockets Are Gonna Change the Pen Test World. Are You Ready? | Adrien de Beaupre, Justin Searle |
April 12, 2016
1:15pm EDT
(17:15:00 UTC) | LIVE from THIR Summit in New Orleans: The Most Dangerous Game; Evolving Threat Hunting to Keep Up with Skilled Adversaries | |
April 8, 2016
1:00pm EDT
(17:00:00 UTC) | To trust or not to trust: The relationship between you & your mobile forensics tool | Heather Mahalik |
April 7, 2016
1:00pm EDT
(17:00:00 UTC) | Gamification of a Fortune 20 SOC | Josh Stevens, Marcel Hoffmann |
March 31, 2016
1:00pm EDT
(17:00:00 UTC) | Mapping Attack Infrastructure: Leave Your Foe With Nowhere to Hide | Stephen Ginty, John Pescatore |
March 29, 2016
1:00pm EDT
(17:00:00 UTC) | Evolving from cyber Gatherers to cyber Hunters - Darwin was wrong about APTs | Darren Anstee, John Pescatore |
March 29, 2016
11:00am EDT
(15:00:00 UTC) | 2016 Security Awareness Report Key Findings | Lance Hayden, Bob Rudis, Lance Spitzner |
March 24, 2016
3:00pm EDT
(19:00:00 UTC) | Expect the Unexpected, Preparing for the Inevitable Cyber Breach | Joseph Muniz |
March 24, 2016
1:00pm EDT
(17:00:00 UTC) | Mobile Data Loss - Threats & Countermeasures | Michael T. Raggo |
March 24, 2016
11:00am EDT
(15:00:00 UTC) | Facilitating Fluffy Forensics 2.0 | Andrew Hay |
March 23, 2016
1:00pm EDT
(17:00:00 UTC) | What Works: Inspecting Encrypted Traffic with the Blue Coat SSL Visibility Appliance | Michael Weinstein, John Pescatore |
March 22, 2016
1:00pm EDT
(17:00:00 UTC) | Ensuring Compliance and Detecting Suspicious Activity with Promisec Endpoint Manager | Noel Slane, Dave Shackleford |
March 18, 2016
1:00pm EDT
(17:00:00 UTC) | SANS 2016 Endpoint Security Survey Part 2: Can We Say Next-Gen Yet? | Marty Ward, Anthony Di Bello, G.W. Ray Davidson, PhD |
March 17, 2016
1:00pm EDT
(17:00:00 UTC) | SANS 2016 Endpoint Security Survey Part 1: The Evolving Definition of Endpoints | G.W. Ray Davidson, PhD, Sara Lofgren, Dana Torgersen, Lee Wei |
March 16, 2016
1:00pm EDT
(17:00:00 UTC) | Bring Your Own Collaboration Technical Control Tradeoffs | Dave Shackleford, Scott Gordon |
March 15, 2016
1:00pm EDT
(17:00:00 UTC) | Benchmarking AppSec: A Metrics Pyramid | Tim Jarrett, Jim Bird |
March 14, 2016
7:15pm EDT
(23:15:00 UTC) | Analyzing the Ukrainian Power Grid Cyber-Attacks | Jake Williams |
March 10, 2016
3:00pm EST
(20:00:00 UTC) | 10 Quick Win, Industry Agnostic SIEM Dashboards | Craig Bowser |
March 10, 2016
1:00pm EST
(18:00:00 UTC) | Is Active Breach Detection the Next-Generation Security Technology? | Paul Kraus, Dave Shackleford |
March 9, 2016
2:00pm EST
(19:00:00 UTC) | Security Awareness: Understanding and Managing Your Top Seven Human Risks | Lance Spitzner |
March 8, 2016
1:00pm EST
(18:00:00 UTC) | A DevSecOps Playbook | Amrit Williams, Dave Shackleford |
March 7, 2016
9:00pm EST
(02:00:00 UTC) | Passive DNS Logs: The Pulse of the Network | Philip Hagen |
March 2, 2016
1:00pm EST
(18:00:00 UTC) | How To Become A SANS Instructor | Eric Conrad |
February 26, 2016
1:00pm EST
(18:00:00 UTC) | SIFT and REMnux: Wonder Twin Powers Activate! | Lenny Zeltser, Rob Lee |
February 26, 2016
11:00am EST
(16:00:00 UTC) | Predicting Future Attacks and Breaches: Analytics in Action | Christopher Smith, Dave Shackleford |
February 25, 2016
9:00pm EST
(02:00:00 UTC) | Security Leadership For Everyone: Personal Authority and Beyond | Ted Demopoulos |
February 25, 2016
3:00pm EST
(20:00:00 UTC) | SANS VetSuccess Academy sponsored by Solutionary - open now! | Maxwell Shuftan, Arlin Halstead |
February 24, 2016
1:00pm EST
(18:00:00 UTC) | Hunting and Farming : Concepts and Strategies to Improve Your Cyber Defenses | Ben Johnson |
February 24, 2016
6:00am EST
(11:00:00 UTC) | Making Risk Assessment Useful | David Hoelzer |
February 23, 2016
1:00pm EST
(18:00:00 UTC) | The Effectiveness of Microsoft's EMET | Stephen Sims |
February 23, 2016
11:00am EDT
(16:00:00 UTC) | iPhone Forensics - Separating the Facts from Fiction. A Technical Autopsy of the Apple/FBI Debate | Cindy Murphy, Sarah Edwards, Heather Mahalik |
February 19, 2016
3:00pm EDT
(20:00:00 UTC) | GHOST 2.0: What do you need to know about the glibc getaddrinfo vulnerability | Johannes Ullrich, PhD, Chris Eng |
February 19, 2016
10:00am EDT
(15:00:00 UTC) | GHOST 2.0: What do you need to know about the glibc getaddrinfo vulnerability | Johannes Ullrich, PhD, Chris Eng |
February 18, 2016
1:00pm EST
(18:00:00 UTC) | Dizzy New World of Cyber Investigations: Law, Ethics and Evidence | Benjamin Wright |
February 18, 2016
12:00am EST
(05:00:00 UTC) | How to bring some Advanced Persistent Trickery to your fight against Advanced Persistent Threats... | Bryce Galbraith |
February 17, 2016
11:00am EDT
(16:00:00 UTC) | Case Study: How the City of Lewiston Improved Threat Detection with AlienVault USM | Dave Shackleford |
February 12, 2016
3:00pm EST
(20:00:00 UTC) | Implementing a Successful Continuous Monitoring program with Open Source / Free Tools | Ismael Valenzuela |
February 11, 2016
1:00pm EST
(18:00:00 UTC) | Getting Started with Web Application Security | Joseph Feiman, Gregory Leonard |
February 9, 2016
6:00pm EST
(23:00:00 UTC) | CISO Hot Topic: Communicating to and Influencing CEOs and Boards of Directors: What Works and What to Avoid | John Pescatore, Alan Paller |
February 9, 2016
1:00pm EST
(18:00:00 UTC) | Mobile Threat Protection: A Holistic Approach to Securing Mobile Data and Devices | Mic McCully, Lee Neely |
February 8, 2016
1:00pm EST
(18:00:00 UTC) | Risky Business: Evaluating the True Risk to your Security Program | Jenna McAuley, Mike Goldgof, Demetrios Lazarikos (Laz) , Johannes Ullrich, PhD |
February 5, 2016
3:00pm EST
(20:00:00 UTC) | Scaling Big Data Analytics: SANS Review of LogRhythm 7 Analytics and Intelligence Upgrades | Dave Shackleford, Erick Ingleby |
February 4, 2016
1:00pm EST
(18:00:00 UTC) | Security Leadership: Strategies for Success | Frank Kim |
February 3, 2016
1:00pm EST
(18:00:00 UTC) | SANS 2016 IT Security Spending Strategies Survey | Simon Gibson, G. Mark Hardy, Barbara Filkins, Gary Sockrider |
February 2, 2016
1:00pm EST
(18:00:00 UTC) | Threat Hunting | Luis Maldonado, Robert M. Lee, Rob Lee |
January 28, 2016
1:00pm EST
(18:00:00 UTC) | Why You Need Application Security | Joseph Feiman, Johannes Ullrich |
January 27, 2016
1:00pm EST
(18:00:00 UTC) | The Frankenstein Framework - Assembling the Pieces to Enhance ICS Security Without Creating a Monster | Justin Opatny |
January 21, 2016
11:00am EST
(16:00:00 UTC) | An Analysis of the Sandworm Team in Ukraine | Robert M. Lee |
January 20, 2016
8:00pm EST
(01:00:00 UTC) | Security Program Development, Maturity Models and Security Dashboards that help you manage risk | Dean Sapp |
January 19, 2016
3:00pm EST
(20:00:00 UTC) | Data-Driven Threat Intelligence: Metrics on Indicator Dissemination and Sharing | Alex Pinto |
January 19, 2016
1:00pm EST
(18:00:00 UTC) | How to Leverage The Critical Controls in 2016 | Randy Marchany |
January 18, 2016
1:00pm EST
(18:00:00 UTC) | Threat Intelligence Awakens | Rick Holland |
January 14, 2016
3:00pm EST
(20:00:00 UTC) | WhatWorks in AppSec: ASP.NET Web API Security | |
January 13, 2016
1:00pm EST
(18:00:00 UTC) | From the Front Lines: Practical Application of DNS Threat Intel Data | Tim Helming, Robert M. Lee |
January 12, 2016
3:00pm EST
(20:00:00 UTC) | Intelligent Intelligence: Secrets to Threat Intel Success | David Bianco |
January 12, 2016
1:00pm EST
(18:00:00 UTC) | Know Before You Go: Key AWS Security Considerations | Matt Keil, Dave Shackleford |
January 12, 2016
9:00am EST
(14:00:00 UTC) | Smartphone Forensics Moves Fast. Stay Current or You May Miss Relevant Evidence! | Heather Mahalik |
January 11, 2016
10:00am EST
(15:00:00 UTC) | What's New for Security in Windows 10 and Server 2016? | Jason Fossen |
January 6, 2016
12:00pm EST
(17:00:00 UTC) | Are You Ready for Threat Intelligence? Behind the Scenes with FOR578 | Mike Cloppert, Robert M. Lee |
January 5, 2016
12:00pm EST
(17:00:00 UTC) | Deconstructing the Reports of Iranian Activity Against the Power Grid and New York Dam | Mike Assante, Robert M. Lee |
