Top Cybersecurity Training Protects Your Assets - Learn From the BEST and Apply New Knowledge Immediately!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

New SANS Course - How to Prevent, Detect & Respond to an Advanced Attack

  • Tuesday, October 03, 2017 at 3:30 PM EDT (2017-10-03 19:30:00 UTC)
  • Erik Van Buggenhout, Stephen Sims

You can now attend the webcast using your mobile device!



SANS New Course for Cyber Defense - SEC599: Defeating Advanced Adversaries - Implementing Kill Chain Defenses

Advanced adversaries are silently penetrating your organization's networks in effort to steal your crown jewels. But there is hope! In order to implement effective security controls, you must first understand how the adversary operates.

In this webcast, Erik Van Buggenhout and Stephen Sims discuss their new course - SEC599: Defeating Advanced Adversaries - Implementing Kill Chain Defenses- where they answer the question "how do I prevent this type of attack?"

A highly hands-on course (20+ labs), SEC599 touches upon the Advanced Persistent Threat (APT) Attack Cycle, where Erik & Stephen will discuss how effective security controls can be implemented to prevent, detect, and respond to cyber-attacks.

Join Erik and Stephen and learn about SANS brand new Cyber Defense Essentials course - SEC599.

Register for the Beta in San Francisco today.

Speaker Bios

Stephen Sims

Stephen Sims is an industry expert with over 15 years of experience in information technology and security. Stephen currently works out of San Francisco as a consultant. He has spent many years performing security architecture, exploit development, reverse engineering, and penetration testing. Stephen has an MS in information assurance from Norwich University and is a course author and senior instructor for the SANS Institute. He is the author of SANS' only 700-level course, SEC760: Advanced Exploit Development for Penetration Testers, which concentrates on complex heap overflows, patch diffing, and client-side exploits. Stephen is also the lead author on SEC660: Advanced Penetration Testing, Exploits, and Ethical Hacking and co-author of SEC599: Defeating Advanced Adversaries Purple Team Tactics & Kill Chain Defenses. He holds the GIAC Security Expert (GSE) certification as well as the CISSP, CISA, Immunity NOP, and many other certifications. In his spare time Stephen enjoys snowboarding and writing music.

Erik Van Buggenhout

Erik Van Buggenhout is the lead author of SEC599 - Defeating Advanced Adversaries and SEC699 - Purple Team Tactics. In addition to SEC599 and SEC699, Erik teaches SEC560 - Network Penetration Testing & Ethical Hacking and SEC542 - Web Application Penetration Testing & Ethical Hacking. In addition to his work with SANS, Erik is the co-founder of Belgian cyber security firm NVISO. Together with his team of 70+ technical experts, Erik delivers a wide array of technical security services, including penetration testing, security monitoring & incident response.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.