Welcome to The Professional Security Testers Warehouse for the GPEN GSEC GCIH GREM CEH QISP Q/ISP OPST CPTS
Search
Nickname Password Security Code Security Code Type Security Code  
Penetration Testing the way it was meant to be
The best CEH V6 learning package

We recommend:

Top Instructors Top classes from the confort of your home

Video Library

Skimming for ID theft
5 / 2
Views: 149
Comments: 1
2008-11-01 00:18

Latest version of ATM skimmer hidden behind a speaker looking device
5 / 2
Views: 163
Comments: 0
2008-11-01 00:11

ATM Scam, do check your ATM machine before using it
5 / 1
Views: 159
Comments: 0
2008-10-31 23:59

Survey

Whic of the following certifications would you like to get?

GPEN
GCIH
CEH
QEH
GREM
GSEC
CISSP
Security+
Other (please leave a comment)



Results
Polls

Votes: 110
Comments: 0

Who's Online

There are currently, 76 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
The Professional Security Testers Warehouse for the GPEN GSEC GCIH GREM CEH QISP Q/ISP OPST CPTS: Training

Search on This Topic:   
[ Go to Home | Select a New Topic ]

The Honeynet Project Forensic Challenge 2010
Posted by cdupuis on Sunday, 28 February 2010 @ 10:42:45 EST (198 reads)
Topic Training

The Honeynet Project has revived an successful program from the past: The Honeynet Project Forensic Challenge 2010. The purpose of the Forensic Challenges is to take learning one step farther. Instead of having the Honeynet Project analyze attacks and share their findings, Forensic Challenges give the security community the opportunity to do so. In the end, individuals and organizations not only learn about threats, but also learn how to analyze them. Even better, individuals can access the write-ups from other individuals, and learn about new tools and techniques for analyzing attacks. Best of all, the attacks of the Forensic Challenge are attacks encountered in the wild, real hacks, provided by our members.

It has been several years since we provided Forensic Challenges and with the Forensic Challenge 2010, we will provide desperately needed upgrades. Currently, we are running our second challenge provided by Nicolas Collery from the Singapore Chapter and Guillaume Arcas from the French Chapter. It deals with client-side attacks and is titled browsers under attack. (accessible at https://www.honeynet.org/challenges/2010_2_browsers_under_attack)

The deadline for submissions is Monday, Match 8th 2010 and results (including a sample solution) will be posted on Monday, March 22nd 2010. The top 3 submissions will be awarded with prizes.

Christian Seifert

Chief Communications Officer
The Honeynet Project


(comments? | Score: 0)


REC0N 2010 MONTREAL CANADA JULY 9-11
Posted by cdupuis on Friday, 05 February 2010 @ 10:29:31 EST (1019 reads)
Topic Training

R E C O N 2 0 1 0 .

Call For Papers (C F P)

REC0N 2010
MONTREAL
JULY 9-11


+ RECON returns for 2010

- Training sessions + conference

+ We are accepting submissions

- Single track
- 45-60 minute presentations, or longer, we are flexible
- There will be time for short, informal lightning talks

+ Especially on these topics

- Reverse engineering (Software, Protocols, Hardware, Human)
- Exploit development and vulnerability assessment
- Data analysis and visualization techniques
- Crypto and anonymity
- Physical security countermeasures
- Anything elite

+ Please include

- Speaker name(s) and/or handle
- Contact information (e-mail and cell phone)
- Brief biography
- Any presentation Supporting materials
- Why it is cool and/or why you want to present it

+ You want to speak!

- Please send the above information to  cfp2010 (at) recon.cx by 15 May, 2010

You can visit the main site at:  http://www.recon.cx/2010/index.html


(Read More... | Score: 0)


STRATEGIC SECURITY TESTING WEBCAST by Dr. Eric Cole
Posted by cdupuis on Thursday, 21 January 2010 @ 23:03:37 EST (501 reads)
Topic Training

STRATEGIC SECURITY TESTING WEBCAST 

Cutting-Edge Attack Techniques” – featuring Dr. Eric Cole,
SANS fellow and senior scientist with Lockheed Martin Information Technology.
Dr. Eric Cole, SANS fellow and senior instructor
Host: Core Security Technologies Date: Wednesday, January 27, 2010
Time:  2pm EST / 11am PST (GMT -5:00, New York)
Register: http://www.coresecurity.com/Form/generic/campaign/cuttingEdge

A recording of the webcast will be sent to everyone who registers, so be sure to sign-up even if you can’t make the live session.

In this webcast, noted security and penetration testing expert Dr. Eric Cole will share his insight into how organizations can rapidly improve their resiliency to today’s most advanced malware and hacking techniques via more frequent and proactive assessment. Attackers continue to take advantage of widespread security vulnerabilities located throughout the enterprise IT stack to infiltrate sensitive assets and access protected data, perhaps best evidenced by the recent IE zero day attacks that compromised massive companies including Google. Register here: http://www.coresecurity.com/Form/generic/campaign/cuttingEdge

 
From hydra-like botnet campaigns to Trojan attacks and targeted spear phishing campaigns, threats continue to gain in sophistication and volume and defensive controls have never been more challenged to stop emerging attacks. The best method for organizations to empower themselves and level the playing field is to use the same techniques employed by attackers to test where their more critical exposures exist.
 
Among the key points Cole will cover in this webcast will be:
 
·         Which types of attacks are currently most prevalent and dangerous.
·         Why more aggressive testing best addresses cutting-edge threats.
·         How cross-vector testing helps thwart advanced malware and botnet programs.
·         Important issues to consider in planning end user security awareness testing.
 
Even if you are already engaging in regular penetration tests it is crucially important to stay abreast of emerging threat models and the most effective assessment best practices being embraced by leading practitioners.
 
Please join us for this highly informational webcast that can help you continue to build and advance your penetration testing programs.
 


Best Regards,

Core Security Technologies
41 Farnsworth Street Boston, MA 02210
http://www.coresecurity.com
http://blog.coresecurity.com
http://www.twitter.com/coresecurity


(Read More... | Score: 0)


nullcon Goa, India, 2010 International Security & Hacking Conference
Posted by cdupuis on Thursday, 14 January 2010 @ 11:08:12 EST (634 reads)
Topic Training

NOTE FROM CLEMENT:

GOA is an amazing place with georgous beaches and everything is VERY inexpensive.  I was there last spring to deliver training and I had a really great time.   If you have the chance, do combine your training with a few days on the northern beach where you have miles and miles of deserted beaches almost to yourself.  Here is the announcement about the conference:

Hi all,

null is proud to announce the launch of it's security & hacking conference nullcon Goa 2010 nullcon Goa 2010, India's first 'community' driven security & hacking conference will bring together Security Researchers, security professionals, vendors, CXOs, Law Enforcements agencies from all over the country to a common platform to discuss latest research in field of Information Security and in particular the major security threats faced by everyone today.

We are extremely thankful to SANS for providing us a free seat as a prize for the hacking challenge winner at nullcon for their SEC 504: Hacker Techniques, Exploits & Incident Handling class (worth USD 4095) to be held in Feb at the Ramada Bangalore.

Details of the class can be found at: http://www.sans.org/india-2010/
email: AsiaPacific@sans.org

nullcon is one of a kind of conference showcasing the latest research and trends in information security by renowned security researchers/professionals.  Any conference cannot  be successful without the right audience.  That's why your presence is very essential for making nullcon successful.

Website: http://nullcon.net

Legend:
 ** - BONUS Talk
 +  - new(new version)Tool being released

First list of speakers (not in any specific order):


**0. Anonymous - Desi Special(pronounced pay-sul, as in chai) Hacking
+1. Abhisek Datta - Software Fuzzing with Wireplay
2. WhiteKnight - The art of cyber-warfare
3. Veysel Ozer - The evil Karmetasploit upgrade
+4. Anant Kochhar - Malware detection tool for Websites - A proof of Concept
5. Cassio Goldshmidt - Tracking the progress of SDL program
6. Vinoth Sivasubramanian - Defending Industrial espionage in Today's
Environment.
7. Vishwas Sharma & Amandeep - Intelligent Debugging and in-memory fuzzing.
+8. Lavakumar Kuppan - Imposter ke Karnamey: The browser phishing tool
9. Harshad Patil - Botnet mitigation, monitoring and management.
10. Prince Komal Boonlia - Steganography: Data hiding and Data Carving
11. Bhaskar Jain - Incomplete implementation of SAML
12. Navin Pai - Quantum computing: Challenges in the field of security

nullcon Details
--------------
Dates: 6-7th Feb 2010
Venue: The Retreat by Zuri,
           Pedda, Uttor Doxi, Varca, Salcete
           Goa 403 721
           INDIA

Registration:
------------
Conference Pass - INR 2000/- (till 15th Jan 2010, avail the discounted
price now)
Details: http://nullcon.net/register
We are also accepting offline registrations for Conference Pass (and
stay at The Retreat, if required).

About null:
null - The open security community is a non-profit community with
focus on spreading security awareness, advanced research in security
and helping govt. and private institutions with security related issues.
website:    http://null.co.in


Thanks to our sponsors:

Gold Sponsor: SANS  http://www.sans.org/india-2010/
Bronze sponsor: Timblo Group  www.timblos.com

Best Regards,
null Team


(comments? | Score: 0)


26C3 THe world largest hacker conference in Berlin - Recording now online
Posted by cdupuis on Thursday, 14 January 2010 @ 06:55:23 EST (834 reads)
Topic Training

The 26th edition of the world's largest annual hacker conference, 26C3, took place in Berlin last week.
With about 2,500 attendees, a combined total of 9,000 participants worldwide (via live streams), and
an array of features that no other conference in the world can match, it was very much a milestone.

You can get the conference recording at:

http://events.ccc.de/congress/2009/wiki/Conference_Recordings


(comments? | Score: 0)


ClubHack presentations and photos are now online
Posted by cdupuis on Monday, 04 January 2010 @ 20:01:42 EST (614 reads)
Topic Training

Anonymous writes "

ClubHack2009 presentations and photos are online.

Presentations: http://clubhack.com/2009/presentations


Photos: http://www.flickr.com/photos/tags/clubhack09/

thanks


team ClubHack

 

Presentations
 Rohas Nagpal - Indian IT Act 2000 vs 2009

 Manindra Kishore - Incident Handling and Log Analysis for Web Based Incidents

 

 

 Anant Kochar - Revealing the Secrets: Source Code Disclosure, Techniques and Impacts

 Abhijit Tannu - Facilitate Collaboration with Information Rights Management

 

 

 

 

 Nikhil Wagholikar in abstentia of K K Mookhey - Risk Based Penetration Testing

 Suhas Desai - Open source for securing data with advanced Crypto-Steganography technology

 

 

 Vinoo Thomas & Rahul Mohandas - India Cyber Crime Scene - Caught in the Crossfire

 Lavakumar Kuppan - Lust 2.0 – Desire for free WiFi and the threat of the Imposter

 

 

 Kush Wadhwa - Advance Computer Forensic concepts (windows)

 Gursev Singh Kalra - Mobile Application Security Testing

"

(comments? | Score: 0)


CarolinaCon Call for Paper
Posted by cdupuis on Friday, 25 December 2009 @ 12:53:29 EST (1326 reads)
Topic Training

CarolinaCon is now accepting speaker/paper/demo submissions for its 6th annual event in March 2010!!!


What is this "CarolinaCon"?


CarolinaCon is an annual Technology Conference whose mission/purpose is to:

- Enhance local and global awareness of current technology issues and developments,

- Provide affordable technology education sessions to the unwashed masses,

- Deliver varied/informative/interesting presentations on a wide variety  of InfoSec/hacking/technology/science topics, and

- Mix in enough entertainment and side contests/challenges to make for a truly fun event


When/Where is CarolinaCon?


This year's event will be held on the weekend of March 19th-21st, 2010.

The event will mostly occur at a Holiday Inn in Raleigh, NC.  Raleigh is about 30 minutes from Durham, Chapel Hill, and Research Triangle Park.


Who develops/delivers CarolinaCon?


CarolinaCon is proudly brought to you by "The CarolinaCon Group". 

The CarolinaCon Group is a non-profit organization registered in the state of NC, dedicated to educating the local and global communities about technology, information/network/computer security, and  information rights.

The CarolinaCon Group is also closely associated with various "2600" chapters across NC, SC, TN, VA, LA, DC, and NY.  Many of the volunteers who help develop and deliver CarolinaCon come from those chapters.


What events will be at CarolinaCon?

CarolinaCon is mainly about the talks/presentations/demos.  Alongside of those we'll surely have several other technology-related contests/challenges, as we've had in past years.  Details on other events will be announced soon.


Who will be presenting which topics this year?


That's where YOU possibly come in.  If you are somewhat knowledgeable in some interesting field of technology, hacking, science, etc., and are interested in speaking/presenting at CarolinaCon, we invite you to submit your proposal (in brief) for our review.  If you're interested in presenting please send;

- your name or handle,
- the topic/presentation name,
- estimated time-length of presentation, and
- a brief topic abstract
....via e-mail to:
speakers carolinacon.org

*NOTE:

All submissions are due BY January 29, 2010!  Please be timely in submission if you're committed to being part of the elite cadre of presenters.  We value diversity, so please don't hesitate to propose
your ideas no matter how outlandish.

If you speak at the Con, you will receive;

- free Con admission for you and one guest,
- a free Con t-shirt,
- minimal fame, glory, and possibly notoriety, and
- mad props from our staff and attendees


I'm excited and I want to present!  What do I do know?


If you're interested in speaking, send the 411 requested to:
speakers carolinacon.org
(BY/BEFORE January 29th 2010)

And if you're interested in attending, watch this space for more details:

www.carolinacon.org

...and don't forget to mark the dates on your calendar!

Peace,

Vic

(Read More... | 22 comments | Score: 0)


Notacon 2009 video files are now online
Posted by cdupuis on Sunday, 29 November 2009 @ 11:42:34 EST (611 reads)
Topic Training

Anonymous writes "

After much delay, the Notacon 2009 video files are now online!

You can snag them through the Notacon Media site at:

http://www.notaconmedia.com

as well as via bittorrent, information available at http://wiki.notacon.org/NotaconMedia

PREVIOUS YEARS ARCHIVE AT:

It is our goal to make sure that the recorded proceedings of Notacon remain free and available once the event is over as a gesture of gratitude and thanks to the community who we rely on for support. Proceedings are usually published after all CD/DVD orders of the records are sent to create an incentive for particularly dedicated members to receive the records before they are released to the general public.

In order to remain good community citizens ourselves, we willingly offer all publically published media content under the Create Commons Attribution-ShareAlike 2.0 license. The full legal code of this license can be found here. Please read the license before copying or making any derivative works.

Notacon 2004 Media Archive

Notacon 2005 Media Archive

Notacon 2006 Media Archive

Notacon 2007 Media Archive

Notacon 2008 Media Archive

Notacon 2009 Media Archive


Enjoy and please let us know if you run into any troubles.

- Froggy

"

(Read More... | 23 comments | Score: 0)


Hack In The Box (HITB) Security Conference 2010 Dubai
Posted by cdupuis on Saturday, 28 November 2009 @ 10:56:21 EST (1053 reads)
Topic Training

Anonymous writes "

The Call for Papers for HITB Security Conference 2010 Dubai is now open!

Talks that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before.

Summaries not exceeding 1250 words should be submitted (in plain text format) to cfp -at- hackinthebox.org for review and possible inclusion in the programme.

Date: April 19th . 22nd 2010
Venue: Sheraton Dubai Creek

Keynote Speakers:

John Viega (CTO, SaaS, McAfee Inc.)
Matt Watchinski (Senior Director of Vulnerability Research, Sourcefire Inc.)

Submissions are due no later than 1st February 2010.

TOPICS

Topics of interest include, but are not limited to the following:
# 3G/4G Cellular Networks
# Apple / OS X security vulnerabilities
# SS7/Backbone telephony networks
# VoIP security
# Firewall technologies
# Intrusion detection
# Data Recovery, Forensics and Incident Response
# HSDPA and CDMA Security
# WIMAX Security
# Identification and Entity Authentication
# Network Protocol and Analysis
# Smart Card and Physical Security
# Virus and Worms
# WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security
# Analysis of malicious code
# Applications of cryptographic techniques
# Analysis of attacks against networks and machines
# File system security
# Security of Embedded Devices
# Side Channel Analysis of Hardware Devices
# Cloud Security

PLEASE NOTE:

We do not accept product or vendor related pitches. If your talk involves an advertisement for a new product or service your company is offering, please do not submit.

Your submission should include:
# Name, title, address, email and phone/contact number
# Short biography, qualification, occupation (limit 250 words)
# Summary or abstract for your presentation (limit 1250 words)
# Technical requirements (video, internet, wireless, audio, etc.)

Each non-resident speaker will receive accommodation for 2 nights/3days.
For each non-resident speaker, HITB will cover travel expenses up to USD 1,200.00.

HITBSecConf2010 . Dubai
http://conference.hackinthebox.org/hitbsecconf2010dxb/


===

In case you missed it, the photos and materials from HITBSecConf2009 - Malaysia have been released.

In addition the CTF Crew has also released the bonus binaries from the CTF Weapons of Mass Destruction.

Video recordings of the talks will be released as usual in December (just before Xmas).

Materials:
http://conference.hackinthebox.org/hitbsecconf2009kl/materials/

CTF Binaries:
http://conference.hackinthebox.org/hitbsecconf2009kl/materials/ctf/

Photos:
http://photos.hackinthebox.org/


===

Below are the dates for HITBSecConf2010 (block your calendars now :)

HITBSecConf2010 . Dubai . April 19th . 22nd
Keynote Speakers: John Viega & Matt Watchinski

HITBSecConf2010 . Amsterdam . July 5th . 8th
Keynote Speakers: Paul Asadoorian & Mark Curphey

HITBSecConf2010 . Malaysia . October 11th . 14th
Keynote Speakers: Paul Vixie, Chris Wysopal, Paul Ferguson

"

(Read More... | 19 comments | Score: 0)


Webcast: “SC Magazine’s 20 Influential Security Products of the Past 20 Years”
Posted by cdupuis on Thursday, 12 November 2009 @ 15:36:49 EST (793 reads)
Topic Training

Webcast: “SC Magazine’s 20 Influential Security Products of the Past 20 Years” with Peter Stephenson

Webcast: "SC Magazine’s 20 Influential Security Products of the Past 20 Years”
with Peter Stephenson

YOU’RE INVITED: IT SECURITY WEBCAST 
 
“SC Magazine’s 20 Influential Security Products of the Past 20 Years” with Peter Stephenson
 
Presenter:  Peter Stephenson, technology editor at SC Magazine
Date:  Thursday, November 19, 2009
Time:  2pm EST / 11am PST (GMT -5:00, New York)
Register: http://www.coresecurity.com/Form/generic/campaign/CS20secProducts
 
*** A recording of the webcast will be sent to everyone who registers, so be sure to sign up even if you can’t attend the live session. ***
---------------------------------------------------------------------------------
 
SC Magazine recently marked its 20th anniversary with a special issue including the publication’s picks for 20 influential security products of the past 20 years. Please join Peter Stephenson for a webcast review of these products and how they have assisted SC Magazine’s security pros during tough situations, made their jobs easier, and helped them to make new discoveries about the current threat environment.
 
The webcast will detail the process through which SC Magazine editors and reviewers selected the 20 products, while also taking a closer look at some of the individual selections. In addition, Stephenson will touch upon some of the most interesting and valuable experiences that he and his team have had over their many years of testing products and using them in their own IT environments.

Core Security’s penetration testing software solution, CORE IMPACT Pro, will also be covered as part of SC Magazine’s list. Stephenson will offer his thoughts on the product’s evolution over time and why the experts have praised its ability to prioritize, benchmark and measure organizational exposure to real-world IT threats.
 
 
We look forward to seeing you on the webcast!

Best Regards,
 
Core Security Technologies
41 Farnsworth Street
Boston, MA 02210

 


(comments? | Score: 0)


FRHACK01 copy of presentations
Posted by cdupuis on Tuesday, 06 October 2009 @ 21:48:28 EDT (1198 reads)
Topic Training

Hi there,

FRHACK01 (www.frhack.org) is over and we want to thanks everyone for participation, and really hope that you appreciated this 1st edition and had some fun in Besancon, France. [1]

You can find the slides of the speakers here:
http://www.frhack.org/slides/FRHACK2009_Advanced-Payloads_BSDaemon.ppt
http://www.frhack.org/slides/FRHACK2009_Attacking-SS7_Langlois.pdf
http://www.frhack.org/slides/FRHACK2009_Audit_Gamache.ppt
http://www.frhack.org/slides/FRHACK2009_Business-Logic-Flaws_Georgiadis.ppt
http://www.frhack.org/slides/FRHACK2009_HackerSpaces_tmplab.pdf
http://www.frhack.org/slides/FRHACK2009_Hacking-Intranets_Cerrudo.ppt
http://www.frhack.org/slides/FRHACK2009_IpMorph_Prigent.pdf
http://www.frhack.org/slides/FRHACK2009_JA.odp
http://www.frhack.org/slides/FRHACK2009_Kerouanton.pdf
http://www.frhack.org/slides/FRHACK2009_Massive-Activities_Kachalin.pdf
http://www.frhack.org/slides/FRHACK2009_Mchiriac.ppt
http://www.frhack.org/slides/FRHACK2009_MITM-Keylogging_p3Lo.ppt
http://www.frhack.org/slides/FRHACK2009_Oechslin.pdf
http://www.frhack.org/slides/FRHACK2009_Sarraute.pdf
http://www.frhack.org/slides/FRHACK2009_UC-Security_VIPER.pptx
http://www.frhack.org/slides/FRHACK2009_WAF_Web-Application-Firewalls_Gioria.pdf


PS1: We'll upload missing ones in a near future
PS2: Video recordings of the conferences should be available in a couple of weeks [2]
PS3: I like to break some hashes with it

[1] Public pictures and videos of FRHACK01:
http://bruno.kerouanton.net/blog/2009/09/06/frhack-in-live/
http://picasaweb.google.ru/A.Kachalin/FrHack1st#
http://attackvector.lescigales.org/2009/09/14/frhack01-2009-resume-nothing-is-secure-but-we-can-try-together/
http://bughira.wordpress.com/2009/09/24/oatv2-0-in-frhack-01/
http://info.francetelevisions.fr/video-info/index-fr.php?id-video=cafe_HD_1200_besancon_midipile_070909_070920091222_F3
http://www.net-security.org/secworld.php?id=8059

[2] You can purchase behind the scene professional videos here:
http://www.frhack.org/videos/frhack_videos_en.pdf
french:
http://www.frhack.org/videos/frhack_videos_fr.pdf

Thanks again!
/JA

--
NO CISSP, NO CISM, NO CHS-III, NO ISSAP, NO ISSPCS, NO ITILp, NO CGEIT,
NO MCSE, NO MCT, NO ISO27001, NO OSCP, NO IACRB CPT, NO CEPT, NO GPEN, NO CCNP, NO CCDP, NO CCIP, NO CCSP, NO CCVP
NOthing
Sorry! I just have a brain and two hands.

(Read More... | 2 comments | Score: 0)


SC World Congress - Enterprise Data Security, October 13-14 in New York City
Posted by cdupuis on Tuesday, 21 July 2009 @ 19:58:24 EDT (896 reads)
Topic Training

Make plans now to attend the second annual SC World Congress - Enterprise Data Security, October 13-14 in New York City.

The Congress features a comprehensive, two-day program presented in four tracks-including the unique Editors Choice sessions-and the industry's largest fall product expo showcasing IT security solutions from the leading vendors and hot start-ups. 

Emphasizing quality content, innovative formats and sessions, global perspectives and ROI, this is the one event you can't afford to miss.

Register by August 31 for big savings.  www.scworldcongress.com


(Read More... | 1 comment | Score: 0)


CORE IMPACT SPONSORED WEBCASTS
Posted by cdupuis on Tuesday, 21 July 2009 @ 19:49:28 EDT (907 reads)
Topic Training

Please join us in the upcoming weeks for the following informative, free SANS webcasts that you won't want to miss!

WEBCAST 1
Virtual Roundtable Webcast
WHEN: Tuesday, July 14, 2009 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Ed Skoudis, Mike Poor and Hal Pomeranz
https://www.sans.org/webcasts/show.php?webcastid=92144
Sponsored By: Core Security Technologies http://www.coresecurity.com/

Ever want to pull a chair up to the SANS lunch table? Here's your chance to get some virtual face time with some of the "cool kids" from SANS as they discuss the latest topics on the information security threat
horizon, including new attacks to look out for and what to do about them.

Please join SANS experts Ed Skoudis, Mike Poor, and Hal Pomeranz for a virtual roundtable discussion of threats and attacks making the news and an overview of all the late-breaking security risks. You'll
also have the opportunity to ask questions and contribute your thoughts throughout the duration of the webcast.

WEBCAST 2
When You're Holding a Hammer, Everything Looks Like a Nail: Avoiding
the Hype and Making Good Technology Decisions
WHEN: Wednesday, July 15, 2009 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Tom Liston
https://www.sans.org/webcasts/show.php?webcastid=92589

The IT world seems particularly susceptible to a "bandwagon" mindset, where the latest tools and technologies become the "must-haves" on any new project.  As we count-down to the upcoming SANS Virtualization and Cloud Computing Summit, Tom Liston, summit chair, will walk through a five-step, no-nonsense guide to deciding if deploying a particular technology makes sense.  While this "how-to" will be aimed at two of the hottest IT technologies: virtualization and cloud computing, the lessons
learned can be applied to the "next big thing" as well.

WEBCAST 3
Managing Change and Event Monitoring for Sustainable NERC CIP Compliance
WHEN: Tuesday, July 21, 2009 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Matthew Luallen, Mehlam Shakir, and Toney Jennings
https://www.sans.org/webcasts/show.php?webcastid=92508
Sponsored By: NItroSecurity  http://www.nitrosecurity.com/ & CoreTrace
http://www.coretrace.com/

This presentation will describe Encari's interpretation of the requirements as well as the ability of Responsible Entities to maintain Cyber Asset change control and augment manual log review with
technology, such as Security Information & Event Management (SIEM).

WEBCAST 4
HP Tackles Cloud Application Security
WHEN: Thursday, July 23, 2009 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Dennis Hurst
https://www.sans.org/webcasts/show.php?webcastid=92428
Sponsored By: HP
https://h10078.www1.hp.com/cda/hpms/display/main/hpms_content.jsp?zn=bto&cp=1-11-201_4000_100__

In this webcast, participants will learn about:

- The three most common delivery platforms for Cloud computing, IaaS, PaaS and SaaS.
- How to manage application keys and handle sensitive information for each platform.
- How the delivery platforms impact the software development lifecycle
- How we expect hackers to approach cloud applications
- How HP can help you secure cloud applications

WEBCAST 5
Finding the Root Cause of Any Security Alert - Fast
WHEN: Wednesday, August 5, 2009 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Joe Levy and Matthew Dieckman
https://www.sans.org/webcasts/show.php?webcastid=92469
Sponsored By: Solera Networks http://www.soleranetworks.com/ and SonicWALL
http://www.sonicwall.com/

As a security administrator, your job is to quickly decide if a security alert poses a real threat to your network, how to remediate, and the priority for action. Your operational challenge is linking an alarm to
actual network activity by specific agents or users. The lack of specific data often forces security professionals to guess at the degree of exposure, or whether a breach actually occurred. Without data, your
ability to identify the scope of a security event or verify compliance with security policy is confined to a perpetual state of gray.

WEBCAST 6
Top Ten Virtualization Security Mistakes and How to Avoid Them
WHEN: Tuesday, August 18, 2009 at 1:00 PM EDT (1700 UTC/GMT)
FEATURING: Jim Hietala, Michael Berman, and Ahmad Sallam
https://www.sans.org/webcasts/show.php?webcastid=92624
Sponsored By: McAfee http://www.mcafee.com/us/ and CatBird http://www2.catbird.com/

Failure to separate duties, securely segment networks, and to recognize where the virtual meets the physical network are but some of the security mistakes organizations make when deploying virtual machine technology.  Senior SANS Analyst, Jim D. Hietala, describes how to avoid these and other security mistakes in order to prevent security incidents and exposures.

**************************************
Did you miss an important SANS webcast event?
Click below for a list of archived webcasts Available on demand today.
http://www.sans.org/webcasts/archive.php

**************************************
Click here to subscribe to the SANS webcast RSS feed
http://feeds.feedburner.com/SansInstituteWebcasts

********************************************************************
Be sure to check out the following webcasts from our SANS Webcasts
Archives https://www.sans.org/webcasts/archive.php

Next-Generation Log Management: Optimized for the Broad Market - Five
Distinct Advantages of the QRadar Log Management Solution
https://www.sans.org/webcasts/show.php?webcastid=92463
Sponsored By: Q1 Labs

Network Forensics: No Hard Drive?  No Problem!
https://www.sans.org/webcasts/show.php?webcastid=92559
Sponsored By: LogRhythm

Blocking the Covert Channels Used for Malicious Data Theft
https://www.sans.org/webcasts/show.php?webcastid=92364
Sponsored By: FireEye

********************************************************************
Visit the SANS Vendor Demo resource page to see the latest INFOSEC products & solutions in action!
http://www.sans.org/resources/vendor_demos/


(Read More... | 1 comment | Score: 0)


Earn Your ECE and CPE Credits By Attending Webcasts!
Posted by cdupuis on Tuesday, 21 July 2009 @ 19:36:26 EDT (952 reads)
Topic Training

Subscribe to the EC-Council | Security Channel. Hear from some of the best and learn about the hottest topics and latest trends in the security space today.

Earn Your ECE Credits By Attending Webcasts!

Security Channel

Webcast Schedule for July 2009

------------------------------------------------------------------------------------------------------------------------------
July 14, 2009
View HERE

Topic: Cyber Jihad
Presenter: Jeff Bardin | Treadstone 71
------------------------------------------------------------------------------------------------------------------------------
July 16, 2009
View HERE.

Topic: Zen and The Art Maintaining an Internal Penetration Testing Program
Presenter: Paul Asadoorian | PaulDotCom
------------------------------------------------------------------------------------------------------------------------------
July 21, 2009
9am EST
Register HERE.

Topic: 5 Critical Programming Practices for Today's Most Dangerous Application Attacks
Presenter: Jeff Williams | Aspect Security
------------------------------------------------------------------------------------------------------------------------------
July 23, 2009
9am EST
Register HERE

Topic: VoIP Security: Threats & Trends
Presenter: Peter Cox | UM Labs
------------------------------------------------------------------------------------------------------------------------------
July 28, 2009
9am EST
Register HERE

Topic: User Hacking - The Secret to Successful Client-Side Attacks
Presenter: Mike Murray | Michael Murray & Associates
------------------------------------------------------------------------------------------------------------------------------

EC-Council Certified Members attending will earn 2 ECE credit

------------------------------------------------------------------------------------------------------------------------------
Did you know that Hacker Halted USA 2009 is just around the corner?
HH Banner
Do Not Miss The Complete & Comprehensive Security Event!
Sep 20 - 25, 2009 | Miami, Florida

(Read More... | 1 comment | Score: 0)


EC-Council | Security Channel - The Education Channel for Security Professionals
Posted by cdupuis on Thursday, 11 June 2009 @ 01:17:12 EDT (885 reads)
Topic Training

Anonymous writes "

Breaking News

Subscribe to the EC-Council | Security Channel and learn about some of the hottest topics and latest trends in the security space, via webcast.

To subscribe to the Channel, click HERE.

You will get automatic updates and reminders on the webcasts that are scheduled.

Webcast Schedule for June 2009 June 4, 2009 View HERE.
Topic: Harnessing SIEM for More Effective Investigations Presenter: Eric Knight, CEH | LogRhythm Inc

June 11, 2009 Register HERE.
Topic: Steps to Implementing ISO 27001 Presenter: Eric Lachapelle, CEO | Veridion Inc

June 18, 2009 Register HERE.
Topic: Importance of Risk Management in Governance & Compliance Presenter: Sanjay Anand, Chair | The GRC Group (aka SOX Institute)

June 25, 2009 Register HERE.
Topic: Conficker - Why it Happened? And How We Can Prevent It From Happening Again? Presenter: Mark Harris, Director | Sophos Labs

EC-Council Certified Members attending these webcasts will earn 1 ECE credit

"

(Read More... | 3 comments | Score: 0)


Login

Nickname

Password

Security Code:
Security Code
Type Security Code

Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.

Our Sponsors

Reverse Engineering

Big Story of Today

There isn't a Biggest Story for Today, yet.

You can syndicate our news using the file backend.php or ultramode.txt


All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest © 2003-2008 by Clement Dupuis and Nathalie Lambert (Site Maintainers).

 


 

 


Page Generation: 0.73 Seconds