Archive for the ‘Knowledge’ Category

Security Incident Handling in Small Organizations

|
Comments Off

Posted in SANSRR on December 17th, 2008 by SANS

Category: Incident Handling

Paper Added: December 16, 2008

Tags: , |

Transparent (Layer 2) Firewalls: A look at 2 Vendor Offerings: Juniper and Cisco

|
Comments Off

Posted in SANSRR on December 12th, 2008 by SANS

Category: Firewalls & Perimeter Protection

Paper Added: December 12, 2008

Tags: , |

Document Metadata, the Silent Killer…

|
Comments Off

Posted in SANSRR on December 3rd, 2008 by SANS

Category: Digital Privacy

Paper Added: December 3, 2008

Tags: , |

Data Carving Concepts

|
Comments Off

Posted in SANSRR on November 20th, 2008 by SANS

Category: Forensics

Paper Added: November 19, 2008

Tags: , |

IOSMap: TCP and UDP Port Scanning on Cisco IOS Platforms

|
Comments Off

Posted in SANSRR on November 18th, 2008 by SANS

Category: Tools

Paper Added: November 18, 2008

Tags: , |

Mining for Malware – There's Gold in Them Thar Proxy Logs!

|
Comments Off

Posted in SANSRR on November 17th, 2008 by SANS

Category: Malicious Code

Paper Added: November 17, 2008

Tags: , , |

.NET Framework Rootkits: Backdoors inside your Framework

|
Comments Off

Posted in SANSRR on November 14th, 2008 by SANS

Category: Windows .NET

Paper Added: November 13, 2008

Tags: , , , |

EVTX and Windows Event Logging

|
Comments Off

Posted in SANSRR on November 14th, 2008 by SANS

Category: Logging Technology and Techniques

Paper Added: November 13, 2008

Tags: , , |

Auditing Mac OS X Compliance with the Center for Internet Security Benchmark Using Nessus

|
Comments Off

Posted in SANSRR on November 10th, 2008 by SANS

Category: Mac/Apple Issues

Paper Added: November 10, 2008

Tags: , , |

Expanding Response: Deeper Analysis for Incident Handlers

|
Comments Off

Posted in SANSRR on November 10th, 2008 by SANS

Category: Incident Handling

Paper Added: October 9, 2008

Tags: , |