OpenSSL \Heartbleed" Vulnerability"

  • Wednesday, 09 Apr 2014 8:15PM EDT (10 Apr 2014 00:15 UTC)
  • Speaker: NULL

The archived recording is now available. Please log into your SANS portal account to register for and then access the recording.

In this session, Jake will cover the HeartBleed vulnerability and what it means to you. Another 24 hours have passed since the initial presentation and we know more about what is vulnerable and what isn't. Even if you attended the short presentation last night at #SANS2014, this is a don't miss event.

Jake will cover the actual structure of the vulnerability, methods for detection, and what you need to do (both as a systems admin and an end user). Jake will also perform live demos against a vulnerable server so you see first hand what can be exposed. Finally, we'll be releasing packet captures containing the exploit (suitable for testing your IDS rules).