From: The SANS Institute (Webcastsans.org)
Date: Mon Mar 20 2006 - 18:14:20 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Please join us this week for two FREE SANS Webcasts that you won't
want to miss:

1) Tool Talk: "True Intrusion Prevention - Protecting Against Threats
- From All Vectors, At All Times"
2) "Further Evolution of the Sploit: Exploitation Frameworks and the
Emergence of Advanced Payloads"

You can now download or subscribe to the SANS webcast calendar -
http://www.sans.org/webcasts/calendar.ics

SANS live webcasts allow you to hear a knowledgeable speaker while
viewing presentation slides you can download in advance. If you've
never tuned in to a SANS webcast before, see the simple instructions
at the end of this message to learn how to connect to the SANS Portal
and join us for these free educational webcasts.

********************************************************************

Tool Talk: "True Intrusion Prevention - Protecting Against Threats
- From All Vectors, At All Times"
Tuesday, March 21 at 1:00 PM EST (1800 UTC/GMT)
Featuring: David Thomason - Director, Security Engineering
https://www.sans.org/webcasts/show.php?webcastid=90705
Sponsored by Sourcefire

First generation Intrusion Prevention Systems (IPS) have failed to
solve today's threat problem - breaches are occurring at an ever
increasing rate, damaging organizations' reputations and costing
revenue. Standalone IPS only protect against intrusions, coming from
the perimeter, during the time of the attack. Today's blended threats
require blended security systems that have more remediative options.
Join David Thomason, Sourcefire's Director, Security Engineering,
as he discusses how the combination of endpoint, threat and network
intelligence provides true intrusion prevention by defending networks
against threats from all vectors, all the time - before, during and
after an attack.

Mr. Thomason is the Director of Security Engineering at Sourcefire. In
1986, Mr. Thomason started his career in security while in the United
States Air Force, serving the Air Intelligence Agency including the
AFIWC and AFCERT. Since then, Mr. Thomason has provided security
services including risk assessments, penetration tests, and security
deployments for dozens of companies. In fact, Mr. Thomason was the
project manager responsible for the largest deployment of intrusion
detection systems in an American financial institution.

"Further Evolution of the Sploit: Exploitation Frameworks and the
Emergence of Advanced Payloads"
Wednesday, March 22 at 1:00 PM EST (1800 UTC/GMT)
Featuring: Ed Skoudis and Alex Horan
https://www.sans.org/webcasts/show.php?webcastid=90647
Sponsored by Core Security

Alexander Horan is a Product Specialist for Core Security Technologies,
providing training and customer support for CORE IMPACT's user
base. Mr. Horan has over eight years of experience working with both
software and hardware based security tools. He brings a deep knowledge
and understanding of vulnerability assessment and penetration testing,
systems administration, network administration, network audits,
operations, customer support, technical sales, project management,
network and systems design and IT management to his work at Core.
Prior to working with Core, he was a Senior Consultant with Aspelle
Inc. and a Novell Administrator for JP Morgan.

Exploitation frameworks have emerged as a favorite tool in the
attackers' arsenal. These tools bundle together numerous high -
quality exploits and payloads for penetrating systems, useful not
only to the bad guys but also to vulnerability assessment teams and
penetration testers. Recently, the exploitation payloads included in
these tools have expanded in functionality. The tried-and-true cmd.exe
payloads of yesteryear have given way to newer and more powerful
payloads, which offer benefits to evil attackers and vulnerability
assessors alike. These benefits include a higher chance of successful
execution, a lower chance of crashing a service, minimal interaction
with the target's file system, and potentially unlimited functionality
on the target machine. This session will discuss each of these
capabilities, and what they mean for both the good guys and the bad.

********************************************************************
Additional FREE SANS Webcast in March 2006
WhatWorks in Log Management: "Meeting HIPAA Compliance Requirements
for Log Monitoring At Northwestern Memorial Hospital"
Tuesday, March 28 at 1:00 PM EST (1800 UTC/GMT)
A User Experience Interview Featuring: Asad Syed, Sr. Security
Analyst, of Northwestern Memorial Hospital and Alan Paller of the SANS
Institute
https://www.sans.org/webcasts/show.php?webcastid=90685
Sponsored by LogLogic

"The Sans WhatWorks program is one of my most valuable resources for
choosing information security solutions..." Todd Michael Bushnell,
Information Security Manager, DemandTec, Inc.

"This was my first webcast... I found it to be very informative
and educational - an experience I will repeat on a regular basis!
Keep up the great security work!!" Mark Jones, Warwickshire, England

********************************************************************

For additional information on any of the above webcasts, please go to
http://www.sans.org/webcasts

********************************************************************

In order to access the webcasts, you will need a SANS portal
account and either Real Audio Player or Windows Media Player (free
downloads are available at our website). If you do not already
have a portal account, just go to http://portal.sans.org and
fill in the simple registration form, it's free! Your account
gives you access to the archive of past webcasts. Log on to
http://www.sans.org/webcasts/archive.php

*******************************************************************
SANS Training in San Diego, Munich, London and Washington DC

Turbo charge your security career or the careers of any of your
coworkers this spring in San Diego in early May: a dozen of SANS most
popular courses and a vendor exposition right on the harbor.
http://www.sans.org/security06/
Or in London at the end of June: http://www.sans.org/london06
Or Munich in early April: http://www.sans.org/munich06
Or Washington in July right after July 4 for the biggest SANSFIRE ever:
with all 17 SANS immersion tracks and more than a dozen special courses,
a big exposition, and an inside look at how the Internets Early Warning
System (Internet Storm Center) actually works Bring your family for the
national fireworks show.
http://www.sans.org/sansfire06

*******************************************************************

SANSHOME Program

When a live conference is not an option due to cost, time away or
visa issues, try SANSHOME Weekly Webcasts - great course leaders,
same material, great way to learn, and less expensive. For details,
go to http://www.sans.org/athome
Next session starts March 23 - SANS(R) +S(TM) Training for the CISA(R)
Certification Exam
http://www.sans.org/athome/details.php?id=1419
********************************************************************

To change your subscription, address, or other information, visit
http://portal.sans.org. If you wish to have your name removed from
our mailing list, visit the site above, click on "update your account"
and check the box "Do not send any email".

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]