SANS Cyber Defense Whitepapers

SANS Cyber Defense Whitepapers

White Papers are an excellent source for information gathering, problem-solving and learning. Below is a list of White Papers written by cyber defense practitioners seeking GSEC, GCED, and GISP Gold. SANS attempts to ensure the accuracy of information, but papers are published "as is".

Errors or inconsistencies may exist or may be introduced over time. If you suspect a serious error, please contact webmaster@sans.org.

Featured Papers

SANS Cyber Defense Whitepapers
Title Author Cert
Intrusion Detection & Response Leveraging Next Generation Firewall Technology Ahmed Abdel-Aziz GCIA
Security Systems Engineering Approach in Evaluating Commercial and Open Source Software Products Jesus Abelarde GCIA
Implementing the Critical Security Control: Controlled Use of Administrative Privileges Paul Ackerman GCCC
A No-Budget Approach to Malware Containment Paul Ackerman GSEC
Impediments to Adoption of Two-factor Authentication by Home End-Users Preston Ackerman GSEC
The LogLED An LED-Based Information Security Dashboard Paul Ackerman GCIA
The Power and Implications of Enabling PowerShell Remoting Across the Enterprise Robert Adams GSEC
Processing experimental protocols against IDS Tommy Adams GCIA
How to Leverage PowerShell to Create a User- Friendly Version of WinDump Robert Adams GCIA
Protect your enterprise against clients centric attacks, using Windows 2000 GPO Thierry Agassis GCWN
Case Study: LDAP Authentication and Authorization for Open Source Web Applications Justin Alcorn GSEC
A Case Study: Deployment of Virus Protection In The Global Enterprise Carl Alexander GSEC
Hunting Threats Inside Packet Captures Muhammad Alharmeel GCIA
IPv6 and Open Source IDS Jon Mark Allen GCIA
GIAC GCIA Assignment - Pass Ben Allen GCIA
OS and Application Fingerprinting Techniques Jon Mark Allen GSEC
Implementing the Critical Security Controls in the Cloud Jon Mark Allen GCCC
Building a Forensically Capable Network Infrastructure Nik Alleyne GCIA
Monitoring Network Traffic for Android Devices Angel Alonso-Parrizas GCIA
Basic Steps to Hardening a Standalone Windows 2000 Installation Todd Anderson GSEC
Protect Critical Infrastructure Systems With Whitelisting Dwight Anderson GSEC
Check Point firewalls - rulebase cleanup and performance tuning Barry Anderson GSEC
Building an Enterprise Ready, Client based VPN Solution. Kurt Anderson GSEC
GIAC GCIA Assignment - Pass Donna Andert GCIA
In but not Out: Protecting Confidentiality during Penetration Testing Andrew Andrasik GSEC
DSL and Computer Security Issues Joanne Ashland GSEC
GIAC GCIA Assignment - Pass Robert Ashworth GCIA
Protecting Your Home Computer from the Internet, Can You Keep the Heat Out? Robert Ashworth GSEC
Light at the end of the TCP Tunnel: Freedom or Oncoming Train? Risks, Benefits and Best Practices James Ault GSEC
The Perfect ICS Storm Glenn Aydell GCIA
The China Syndrome Charles Bacon GSEC
IP Fragment Reassembly with Scapy Mark Baggett GCIA
Thumb Drive Threats and Countermeasures in a Mircosoft Windows Environment Mark Baggett GSEC
Challenges in Effective DNS Query Monitoring Caleb Baker GCIA
Building the Airplane in Mid-Flight: Bringing Cyber Security Structure to Special Operations Units Adam Baker GSEC
Snort IDS & SSL Packets inspection Yousef Bakhdlaghi GCIA
Applying Machine Learning Techniques to Measure Critical Security Controls Balaji Balakrishnan GCCC
PC Week hack of 1999 Shawn Balestracci GSEC
Custom Full Packet Capture System Derek Banks GSEC
Cheese Worm: Pros and Cons of a "Friendly" Worm Bryan Barber GSEC
Ghosts in the machine: The who, why, and how of attacks on information security Cary Barker GSEC
GIAC GCIA Assignment - Pass Wes Bateman GCIA
Potential Vulnerabilities of Timbuktu Remote Control Software David Batz GSEC
Security Risk Communication Tools Andrew Baze GSEC
Realistic Risk Management Using the CIS 20 Security Controls Andrew Baze GCCC
GIAC GCIA Assignment - Pass Jim Becher GCIA
Cookies and Exploits Jasmir Beciragic GSEC
GIAC GCIA Assignment - Pass Jasmir Beciragic GCIA
Trust No One: A Gap Analysis of Moving IP-Based Network Perimeters to A Zero Trust Network Architecture John Becker GCIA
GIAC GCIA Assignment - Pass Kirk Becker GCIA
Monitoring Web Server Logs Using Event Log Monitoring Steven Becker GSEC
What's Running on Your Network? Francois Begin GCIA
BYOB: Build Your Own Botnet Francois Begin GSEC
eAUDIT: Designing a generic tool to review entitlements Francois Begin GCCC
Secure remote access using a Juniper SSL VPN Graham Belton GSEC
Data-Centric Quantitative Computer Security Risk Assessment Brett Berger GSEC
Lean Thinking in Information Security Stuart Berman GSEC
Basic Lindows Security Andrew Bernoth GSEC
GIAC GCIA Assignment - Pass Josh Berry GCIA
Identity Theft:What you need to know Krzysztof Biernacki GSEC
BIND 8 Buffer Overflow in TSIG Richard Biever GSEC
Successful Partnerships for Fighting Computer Crime Beth Binde GSEC
GIAC GCIA Assignment - Pass Beth Binde GCIA
Impact of Automatic Update installation in Service Pack 3 from Microsoft on Windows 2000 workstation. Robert Blackwell GSEC
GIAC GCIA Assignment - Pass David Blaine GCIA
GIAC GCIA Assignment - Pass Curtis Blais GCIA
Mitigating Web Application Risks With A Security Code Review And Appscan. Michael Blase GSEC
Answering the Unanswerable Question: How Secure Are We? Jason Bohreer GCCC
Aladdin Esafe Enterprise v3.0 Stacy Bolton GSEC
GIAC GCIA Assignment - Pass Kevin Bong GCIA
Conducting an electronic information risk assessment for Gramm-Leach-Bliley Act compliance. Kevin Bong GSEC
Breaking the Ice: Gaining Initial Access Phillip Bosco GSEC
Real-World Case Study: The Overloaded Security Professional's Guide to Prioritizing Critical Security Controls Phillip Bosco GCCC
Intrusion Detection and Prevention Systems Cheat Sheet: Choosing the Best Solution, Common Misconfigurations, Evasion Techniques, and Recommendations. Phillip Bosco GCIA
Enforce Network Access Control through Security Policy Management Process and Enforcement Craig Bowser GSEC
Information Security: Handling Compromises Craig Bowser GSEC
Scanning for viruses Dan Boyd GSEC
Branch Office connectivity: Private Frame to VPN's, makes dollars and sense. David Boyden GSEC
Ransomware Susan Bradley GSEC
Protecting Small Business Banking Susan Bradley GSEC
Case Study On Improving The Security Of A Firm In A Legacy Application Setting Susan Bradley GSEC
Pass - English Version Marco Brando GCIA
An Explanation of "TCP Wrappers" for the Security Manager Richard Branicki GSEC
Designing a Secure Windows 2000 Network Infrastructure David Branscome GCWN
Managing Accepted Vulnerabilities Tracy Brockman GCCC
Does it come with Networking? Tracy Brockman GCIA
Configuring a Cisco PIX to use TACACS+ for authentication of a remote user VPN Charles Brodsky GSEC
Database Activity Monitoring (DAM): Understanding And Configuring Basic Network Monitoring Using Imperva's SecureSphere Charles Brodsky GCIA
GIAC GCIA Assignment - Pass Denis Brooker GCIA
Securing Our Critical Infrastructures Chris Brooks GSEC
Nessus - Get on Board Greg Brooks GSEC
Evading Network Security Devices Utilizing Secure Shell Wesley Brown GSEC
Finding Bad with Splunk David Brown GCCC
Empowering Your IT Call Center as Information Security Advocates Carrollynn Brown GSEC
SANS GIAC Intrusion Detection Curriculum Parliament Hill 2000 Guy Bruneau GCIA
The History and Evolution of Intrusion Detection Guy Bruneau GSEC
3DES and Secure PIN-based Electronic Transaction Processing Michael Buegler GSEC
GIAC GCIA Assignment - Pass Pedro Bueno GCIA
Snort 3.0 Beta 3 for Analysts Doug Burks GCIA
Limiting Exposure to Denial of Service Attacks Heather Burritt GSEC
Limiting Concurrent Logins in Windows NT/2000 Gene Burton GSEC
We're Auditors - We're Here to Help James Butler GSEC
Enhancing risk management within a research laboratory, from behind an academic institution's firewall - a case study Paul Buzzell GSEC
An Introduction to the Computer Security Incident Response Tom Campbell GSEC
SPAM: Recourse and Education Rodney Caudle GSEC
Assumptions in Intrusion Detection - Blind Spots in Analysis Rodney Caudle GCIA
Compartmented Network Design Weihan Chang GSEC
Windows Update and Its Derivatives - With a focus on SUS Pei-li Chao GSEC
Security Considerations for Voice over Wi-Fi (VoWiFi) Systems Joel Chapman GCIA
Hard Earned Lessons In Implementing Computer Security Incident Response Jason Chee GSEC
Contingency Planning for ACE/Server 5.0 Tikuo Chen GSEC
Wireshark: A Guide to Color My Packets Roy Cheok GCIA
Distributed Object Technology: Security Perspective Subbu Cherukuwada GSEC
Spyware and Network Security Lester Cheveallier GSEC
Usefulness and Shortcomings of the Pre-configured Security Policy Templates that are Included with Windows 2000 Yong Choe GCWN
Smart Cards - the All-in-One Security Platform for Today's Corporate World Ee Chin Chong GSEC
Understanding Mobile Device Wi-Fi Traffic Analysis Erik Choron GCIA
Legal Considerations When Creating an Incident Response Plan Bryan Chou GSEC
Surfing the Web Anonymously - The Good and Evil of the Anonymizer Peter Chow GSEC
Monitoring the vital signs of a network with Multi Router Traffic Grapher (MRTG) Peter Chow GSEC
Microsoft Internet Explorer 6.0 Security: Step-by-Step Chris Christianson GSEC
Managing Security with Group Policy and the Windows Server 2003 Group Policy Management Console Norman Christopher-Knight GSEC
Implementing a Windows 2003 PKI from an Existing Windows 2000 Network Norman Christopher-Knight GCWN
Securing SNMP Windows Stephen Cicirelli GSEC
GIAC GCIA Assignment - Pass Jim Clausing GCIA
Violations of Basic Computer Security Principles within the Television Broadcast Community and Some Suggested Solutions Paul Claxton GSEC
Skimming and Its Side Effects Nobie Cleaver GSEC
Deploying a website built using Oracle9iAS Portal Stephen Coates GSEC
Firewall Builder the GUI alternative James Coffey GSEC
Faster than a speeding bullet: Geolocation data and account misuse Tim Collyer GCIA
Airwatch MDM and Android: a policy and technical review Tim Collyer GSEC
Firefox VS Windows Internet Explorer Robert Comella GSEC
Small Business: The New Target What can they Do? Robert Comella GCIA
Information Warfare: Are You Battlefield Ready? Phillip Conrad GSEC
Detecting Spam with Genetic Regular Expressions Eric Conrad GCIA
Zork as a Computer Investigative Mind Set Timothy Cook GCIA
A Practical Application of Background Investigations for Small Company Security Perimeters Timothy Cook GSEC
Network Security: Layering a 3R Solution @ the Perimeter Larry Copeland GSEC
Covert Channels Erik Couture GCIA
USB - Ubiquitous Security Backdoor Erik Couture GSEC
Help We Just Fired Our Only IT Person! Doug Cox GSEC
Obstacles to - And Workarounds For - Deploying Secure Systems Craig Cox GSEC
GIAC GCIA Assignment - Pass Brian Credeur GCIA
Case Study: Secure Application Deployment Utilizing Terminal Server and VPN Clients Greg Croteau GSEC
Corporate Information Governance with Business Wisdom David Alexander Cruz Urena GSEC
Which YARA Rules Rule: Basic or Advanced? Chris Culling GCIA
The University Has a Firewall - Isn't That Enough? Why Users Still Need to Be Concerned About Computer Security Sherry Cummins GSEC
Hacking the CAN Bus: Basic Manipulation of a Modern Automobile Through CAN Bus Reverse Engineering Roderick Currie GCIA
Developments in Car Hacking Roderick Currie GSEC
The Automotive Top 5: Applying the Critical Controls to the Modern Automobile Roderick Currie GCCC
Detecting Malicious SMB Activity Using Bro Richie Cyrus GCIA
Hacktivism - A Free Form of Expression or a Digital Vandalism Eva Dadok GSEC
Using Open Source to Create a Cohesive Firewall/IDS System Thomas Dager GSEC
Research Guide to Web Resources at Microsoft.com and Applying This to Patching Internet Information Server Barry Dahling GSEC
Patching Windows Environments Using Microsoft Software Update Services SUS Ihaab Dais GSEC
Secure Server Policies and Procedures for Novell NetWare Compliance Dale Daugherty GSEC
Following a Breach Simulating and Detecting a Common Attack Dale Daugherty GCIA
Case Study: Adventures in Securing Mom and Pop Ken Davidson GSEC
GIAC GCIA Assignment - Pass William Davis GCIA
Know Yourself: Vulnerability Assessments Adrien de Beaupre GSEC
A practical guide to OpenSSH Olivier De Lampugnani GSEC
Extracting Files from Network Packet Captures Rebecca Deck GCIA
Triaging the Enterprise for Application Security Assessments Rebecca Deck GCCC
QUIC & The Dead: Which of the Most Common IDS/IPS Tools Can Best Identify QUIC Traffic? Lehlan Decker GCIA
SSH (Secure Shell) Authentication Methods and Security Control Robert Decker III GSEC
The Logbook of The World Ted Demopoulos GSEC
The Importance of the Ramen Worm Paul DePriest GSEC
Corporate LAN Intranet Server Compromise Jasey DePriest GSEC
Achieving Managements Security Commitment Sherry Desbrough GSEC
Security Elements of IIS 6.0 Anthony DeVoto GSEC
Why Small Businesses Need to Secure Their Computers (and How to Do It!) Bruce Diamond GSEC
Incident Management 101: Preparation & Initial Response (aka Identification) Robin Dickerson GSEC
GIAC GCIA Assignment - Pass John Dietrich GCIA
GIAC GCIA Assignment - Pass Joe Dietz GCIA
Malware Analysis: An Introduction Dennis Distler GSEC
The Code Red Worm John Dolak GSEC
The State of Honeypots: Understanding the Use of Honey Technologies Today Andrea Dominguez GCIA
Looking for Linux: WSL Key Evidence Amanda Draeger GMON
Catching Phishers with Honey-Mail Denise Dragos GSEC
Maintaining a secure network Robert Droppleman GSEC
Creating a Bastioned Centralized Audit Server with GroundWork Open Source Log Monitoring for Event Signatures Christopher Duffy GSEC
An AWS Network Monitoring Comparison Nichole Dugan GCIA
A Detailed Look at Steganographic Techniques and Their Use in an Open-Systems Environment Bret Dunbar GSEC
The Business Case for TLS Certificate Enterprise Key Management of Web Site Certificates Wrangling TLS Certificates on the Wild Web Sandra Dunn GCCC
Public Domain FTP Buffer Overflow Vulnerabilities Feb. - Oct. 1999 Ralph Durkee GSEC
Beating the IPS Michael Dyrmose GCIA
A New Evolution in Hack Attacks: A General Overview of Types, Methods, Tools, and Prevention Kelley Ealy GSEC
Generating Anomalies Improves Return on Investment: A Case Study for Implementing Honeytokens Wesley Earnest GCCC
Investing in Information Security: A Case Study in Community Banking Wesley Earnest GSEC
Validating Security Configurations and Detecting Backdoors in New Network Devices Christoph Eckstein GSEC
Preventing data leakage: A risk based approach for controlled use of the use of administrative and access privileges Christoph Eckstein GCCC
OS fingerprinting with IPv6 Christoph Eckstein GCIA
Intrusion detection through traffic analysis from the endpoint using Splunk Stream Etrik Eddy GCIA
Researching a Topic on the Internet Eve Edelson GSEC
Online Safety in a Foreign Language - Connecting with teens Christopher Elgee GSEC
Long Distance Failover - High Availability using Cisco PIX Firewall Chris Ellem GSEC
Creating a Home Test Lab Russell Elliott GSEC
Slapper Paul Elwell GSEC
Improving Analyst Efficiency in Office365 Business Email Compromise Investigation Scenarios Through the Implementation of Open Source Tools Aaron Elyard GSEC
GIAC GCIA Assignment - Pass Mark Embrich GCIA
What is Seen is Screened Todd Emerton GSEC
A Guide to Government Security Mandates Christian Enloe GSEC
GIAC GCIA Assignment - Pass Patrick Ethier GCIA
Application Firewalls: Don't Forget About Layer 7 Russell Eubanks GSEC
A Small Business No Budget Implementation of the SANS 20 Security Controls Russell Eubanks GCIA
GIAC GCIA Assignment - Pass Eric Evans GCIA
A Policy to Prevent Outsider Attacks on the Local Network Clarissa Evans Brown GSEC
Securing Wireless Networking Within The College District Case Study Gregory Evilsizer GSEC
Certificate Revocation in Public Key Infrastructures Scott Fairbrother GSEC
Authenticating Nortel Contivity Clients Using RSA SecurID Tokens Rusty Fancher GSEC
Information Systems Security Architecture: A Novel Approach to Layered Protection George Farah GSEC
Windows Remote Desktop Heroes and Villains Greg Farnham GSEC
Detecting DNS Tunneling Greg Farnham GCIA
Looking Under the Rock: Deployment Strategies for TLS Decryption Chris Farrell GCIA
Securing Static Vulnerable Devices Chris Farrell GSEC
Windows NT Web Server Auditing Dean Farrington GCWN
Steganography - See No Evil, Hear No Evil, Speak No Evil Chris Farrow GSEC
Information Assurance Using Biometrics Bryan Feltin GSEC
PGP in a Networked, Multi-user Environment Mark Fennig GSEC
PCAP Next Generation: Is Your Sniffer Up to Snuff? Scott Fether GCIA
Dealing with DoH: Methods to Increase DNS Visibility as DoH Gains Traction Scott Fether GCIA
Getting Started: The Impacts of Privacy and Security Under HIPAA - A Case Study Barbara Filkins GSEC
Know Thy Network - Cisco Firepower and Critical Security Controls 1 & 2 Ryan Firth GCCC
Base64 Can Get You Pwned Kevin Fiscus GCIA
Simulating Cyber Operations: A Cyber Security Training Framework Bryan Fite GSEC
Corporate Identity Fraud: Life-Cycle Management of Corporate Identity Assets Bryan Fite GSEC
How to Effectively Launch and Maintain Security Policies Vincent Fitzpatrick GSEC
Logfile Analysis: Identifying a Network Attack Michael Fleming GSEC
Implementing a PC Hardware Configuration (BIOS) Baseline David Fletcher GSEC
Novell Server Quick Security Guide for the Overworked Administrator Tony Flowers GSEC
VPN Deployment: Remote Access via Cisco PIX Dwayne Foley GSEC
Is Anyone Out There? Monitoring DNS for Misuse Kaleb Fornero GCIA
Extending your Business Network through a Virtual Private Network (VPN) Kaleb Fornero GSEC
Testing Web Application Security Scanners against a Web 2.0 Vulnerable Web Application Edmund Forster GSEC
Utilizing Static Packet Filters to Enhance Network Security Scott Foster GSEC
Highly Available PCs First Step in Business Continuity for Executives Joseph Fraher GSEC
Building a Home Network Configured to Collect Artifacts for Supporting Network Forensic Incident Response Gordon Fraser GCIA
Web Application Security - Layers of Protection William Fredholm GSEC
Building and Maintaining a Denial of Service Defense for Businesses Matt Freeman GCCC
Something Phishy: How to Avoid Being Caught in the Net of Specialized Spam Karen Friend GSEC
SSL Appliance Based Solutions for Corporate Web Farms: The Benefits, the Drawbacks, and the Vulnerabilities Matthew Fries GSEC
Kerberos Authentication in Windows 2000 Vishwas Gadgil GSEC
Using a Custom LiveCD and Firewall Builder to Provide Enterprise Level Security on a Budget Jim Gadrow GSEC
A Non-technical Perspective: Authentication - AKA: The Idiot's Guide to Passwords Matt Galin GSEC
An Introduction to Implementing Object-Level Security in IBM OS/400 Jeffrey Gardner GSEC
Tackling the Unique Digital Forensic Challenges for Law Enforcement in the Jurisdiction of the Ninth U.S. Circuit Court John Garris GCIA
A Spicy Approach to WebSockets: Enhancing Bro’s WebSockets Network Analysis by Generating a Custom Protocol Parser with Spicy Jennifer Gates GCIA
Security Audit Intrusion Report Michael Gauthier GCIA
Proactively Guarding Against Unknown Web Server Attacks William Geiger GSEC
OSSIM: CIS Critical Security Controls Assessment in a Windows Environment. Kevin Geil GCCC
GIAC GCIA Assignment - Pass Carl Gibbons GCIA
Intrusion Detection Evasion Techniques and Case Studies Pierce Gibbs GCIA
Botnet Tracking Tools Pierce Gibbs GSEC
A Survey of IT Offshoring Kelly Gieg GSEC
Coding For Incident Response: Solving the Language Dilemma Shelly Giesbrecht GSEC
Microsoft DNS Logs Parsing and Analysis: Establishing a Standard Toolset and Methodology for Incident Responders Shelly Giesbrecht GSEC
Applying Information Security and Privacy Principles to Governance, Risk Management & Compliance Scott Giordano GSEC
Security Implications of Update Agent Software Shaun Glaim GSEC
Defense in Depth: Can Geolocation Help Prevent Tax Fraud? Jon Glas GSEC
Using Windows 10 and Windows Server 2016 to create an Endpoint Detection and Response solution Sebastien Godin GCIA
Using COIN Doctrine to Improve Cyber Security Policies Sebastien Godin GSEC
Under the radar: A look at three covert communications channels Jim Goltz GSEC
Attackers Inside the Walls: Detecting Malicious Activity Sean Goodwin GCIA
Two-Factor Authentication (2FA) using OpenOTP Colin Gordon GSEC
Cisco Router Hardening: Step-by-Step Dana Graesser Williams GSEC
Instruments of the Information Security Trade Mark Graff GSEC
Honeytokens and honeypots for web ID and IH Rich Graves GCIA
Phishing Detection and Remediation Rich Graves GSEC
Shell Scripting for Reconnaissance and Incident Response Mark Gray GSEC
How Hard Does the Hack Have to Hurt? An Analysis of the Damage Requirement of the Computer Fraud and Abuse Act 18 U.S.C. Section 1030 Kristine Green GSEC
Case Study: The Get Connected CD David Greenberg GSEC
Defense-in-Policy begets Defense-in-Depth Matthew Greenwell GCED
Let's Slam SQL: The Slammer Worm and Lessons Learned Brian Greif GSEC
Windows NT and Novell Host Based Intrusion Detection Using Native Logging and 3rd Party Log Reporting Tools Robert Grill GSEC
Detecting Malicious Authentication Events in SaaS Applications Using Anomaly Detection Gavin Grisamore GMON
Technical Implementation of the Critical Control "Inventory of Authorized and Unauthorized Devices" for a Small Office/Home Office Kenton Groombridge GCCC
Nftables as a Second Language Kenton Groombridge GSEC
Integration Of Single Sign On Within The Framework Of An J2EE Environment In Banking Field
French Translation
Philippe Gros GSEC
A Best Practices Guide To Secure a Windows(R) XP Professional Installation Zacharias Groves GSEC
How do you like your Internal Security? Hard-Boiled or Scrambled? A Case Study of Hardening Interior Security Jennifer Gruener GSEC
But I have a firewall, my network's secure! Derran Guinan GSEC
Network- and Host-Based Vulnerability Assessments: An Introduction to a Cost Effective and Easy to Use Strategy. Ragi Guirguis GSEC
Hunting with Rigor: Quantifying the Breadth, Depth and Threat Intelligence Coverage of a Threat Hunt in Industrial Control System Environments Dan Gunter GSEC
Logging and Monitoring to Detect Network Intrusions and Compliance Violations in the Environment Sunil Gupta GCIA
How to Configuring Local Logging on Solaris 8 and Use Symantec Intruder Alert for Centralized Logging Nolan Haisler GSEC
Brush up on Bluetooth Jeffrey Hall GSEC
Creating A Secure Linux Logging System Nathaniel Hall GSEC
Steganography Policies for Protecting Your Web Site Toni Halley GSEC
Practical implementation of the Australian Signals Directorate Essential Eight Maturity Model to Level Three within residential University colleges Damian Halloran GSEC
GIAC GCIA Assignment - Pass John Hally GCIA
Steganography: What's the Real Risk? John Hally GSEC
Rapid Tactical Reconnaissance Techniques for Extremely Large-Scale, Dynamic Enterprise Networks Jonathan Ham GSEC
Firewall Fingerprinting: Using default TCP/UDP port combinations and Nmap to identify firewall types in a network Charles Hamby GSEC
The Best Defenses Against Zero-day Exploits for Various-sized Organizations David Hammarberg GSEC
Enhancing IDS using, Tiny Honeypot Richard Hammer GCIA
The Inside-Out Firewall Vulnerability Richard Hammer GSEC
Securing The Hp Nonstop Himalaya Using Safeguard Thomas Hamzik GSEC
Passing the Sniff (Snort) Test Matthew Hansen GCIA
Is Your Storage Area Network Secure? An Overview of Storage Area Network from Security Perspective Mohammed Haron GSEC
GIAC GCIA Assignment - Pass Mohammed Haron GCIA
What Every Tech Startup Should Know About Security, Privacy, and Compliance Kenneth Hartman GCCC
Skype and Data Exfiltration Kenneth Hartman GSEC
BitTorrent & Digital Contraband Kenneth Hartman GCIA
Dynamic Host Configuration Protocol: Security Implications and Possible Safeguards Matthew Harvey GSEC
HL7 Data Interfaces in Medical Environments: Understanding the Fundamental Flaw in Healthcare Dallas Haselhorst GSEC
HL7 Data Interfaces in Medical Environments: Understanding the Fundamental Flaw in Healthcare Dallas Haselhorst GCIA
Onion-Zeek-RITA: Improving Network Visibility and Detecting C2 Activity Dallas Haselhorst GCIA
Uncovering Indicators of Compromise (IoC) Using PowerShell, Event Logs and a Traditional Monitoring Tool Dallas Haselhorst GCCC
Protecting the Average Consumer-What's wrong with Firewalls Thomas Hauer GSEC
GIAC GCIA Assignment - Pass Dan Hawrylkiw GCIA
Securing the SNMP Service Robert Hayden GCWN
NetBus Chris Hayden GSEC
GIAC GCIA Assignment - Pass Chris Hayden GCIA
GIAC GCIA Assignment - Pass Sean-Paul Heare GCIA
GIAC GCIA Assignment - Pass David Heed GCIA
A Secure Windows 2000 Infrastructure David Heed GCWN
Search Engines: The Ignored Threat Paul Heely GSEC
Reigning in the Wild West of TLS Certificate Provisioning Blaine Hein GCCC
GIAC GCIA Assignment - Pass Blaine Hein GCIA
Setting Up and Securing a Small Network with OpenBSD Blair Heiserman GSEC
Guarding the Modern Castle: Providing Visibility into the BACnet Protocol Aaron Heller GCIA
GIAC GCIA Assignment - Pass Jim Hendrick GCIA
Introducing Security to the Small Business Enterprise Jeff Herbert GSEC
Active Directory, Group Policy And Auditingsystem Design For Merged Windows 2000 Multiforest Environment Tomislav Herceg GCWN
Security Features in IPv6 Penny Hermann-Seton GSEC
Budgeting for the Critical Security Controls Paul Hershberger GCCC
Container Intrusions: Assessing the Efficacy of Intrusion Detection and Analysis Methods for Linux Container Environments Alfredo Hickman GCIA
Gaining Visibility on the Network with Security Onion: A Cyber Threat Intelligence Based Approach Alfredo Hickman GSEC
Network Security- A Guide for Small and Mid-sized Businesses Jim Hietala GSEC
Security for Critical Infrastructure SCADA Systems Andrew Hildick-Smith GSEC
Laptop Security: Windows® Vista vs. XP Greg Hill GSEC
Promoting Security from the Middle Siegfried Hill GSEC
The Impact of Cumulative Secure and High Secure Windows 2000 Professional Security Templates on a Workstation Running SCT Banner Siegfried Hill GCWN
Protecting Laptop Computers Greg Hill GSEC
ACF2 Mainframe Security Bethany Hinsch GSEC
Logging and Reporting : A view from the top Rick Hislop GSEC
Case Study: Spam Blocking, Content Filtering, Virus Scanning and Attachment Blocking in a Novell GroupWise Environment With Guinevere, SpamAssassin and Symantec (Norton) Anti-Virus Corporate Edition Doug Hitchen GSEC
A New Needle and Haystack: Detecting DNS over HTTPS Usage Drew Hjelm GCIA
GIAC GCIA Assignment - Pass Thomas Hoffecker GCIA
PowerShell Security: Is it Enough? Timothy Hoffman GSEC
Host-Based Detection and Data Loss Prevention Using Open Source Tools Chris Hoke GCIA
Step by Step Installation of a Secure Linux Web, DNS and Mail Server John Holbrook GSEC
Kerberos Network Authentication Security Protocol - Recent Security Vulnerabilities Jay Holcomb GSEC
Chaining Vulnerability Scans inTenable IO Using Python Jeff Holland GPYC
Securing Wireless LANS in Microsoft Networks using Wi-Fi Protected AccessTM and Digital Certificates John Holmblad GCWN
The Evolving Threats to the Availability and Security of the Domain Name Service John Holmblad GSEC
System and Network Documentation Winston Holmes GSEC
System Security and Your Responsibilities: Minimizing Your Liability Gary Holtz GSEC
Visual Baselines - Maximizing Economies of Scale Using Round Robin Databases Kirsten Hook GCIA
GIAC GCIA Assignment - Pass James Hoover GCIA
A Black-Box Approach to Embedded Systems Vulnerability Assessment Michael Horkan GSEC
Challenges for IDS/IPS Deployment in Industrial Control Systems Michael Horkan GCIA
Setting Up a Database Security Logging and Monitoring Program Jim Horwath GCIA
iPad Security Settings And Risk Review For iOS 4.X Jim Horwath GSEC
Leveraging the SCADA Cloud for Fun and Profit Matthew Hosburgh GCIA
The Spy with a License to Kill Matthew Hosburgh GSEC
How to Target Critical Infrastructure: The Adversary Return on Investment on an Industrial Control System Matthew Hosburgh GCCC
GIAC GCIA Assignment - Pass Dongmei Huang GCIA
GIAC GCIA Assignment - Pass George Huang GCIA
Securing Against the Most Common Vectors of Cyber Attacks Richard Hummel GCCC
Exploring Osquery, Fleet, and Elastic Stack as an Open-source solution to Endpoint Detection and Response Christopher Hurless GCIA
GIAC GCIA Assignment - Pass Lorna Hutcheson GCIA
GIAC Enterprises: Fortunes for the Future - Implementing Active Directory with Defense in Depth Lorna Hutcheson GCWN
GIAC GCIA Assignment - Pass Charles Hutson GCIA
Physical Security and Why It Is Important David Hutter GSEC
Beyond the cookie: Using network traffic characteristics to enhance confidence in user identity Courtney Imbert GCIA
Daisy Chain Authentication Courtney Imbert GSEC
Case Study in Implementing AAA Servers Using TACACS+ Steve Ingram GSEC
A Tool for Running Snort in Dynamic IP Address Assignment Environment Shin Ishikawa GSEC
Implementing Site-to-Site IPSEC VPNs Using Cisco Routers Millie Ives GSEC
Cloud Computing - Maze in the Haze Godha Iyengar GSEC
A Cliff Notes Guide to the History of Information Security: Past, Present, and Future David Jackson GSEC
Are SSL VPNs Ready for the Mainstream? Michael Jackson GSEC
The Key to Internet Security Is Education Cindy James GSEC
Shoestring Virtualization - Reducing the Risk to Small Business Data from Compromised Remote Networks Christopher Jarko GSEC
Hardening BYOD: Implementing Critical Security Control 3 in a Bring Your Own Device (BYOD) Architecture Christopher Jarko GCCC
Does Network Micro-segmentation Provide Additional Security? Steve Jaworski GSEC
Using Splunk to Detect DNS Tunneling Steve Jaworski GCIA
Securing Jenkins CI Systems Allen Jeng GCIA
Minimizing Damage From J.P. Morgan's Data Breach Allen Jeng GSEC
Detecting DLL Search Order Hijacking: How using a purple team approach can help create better defensive techniques and a more tactical SIEM Lasse Hauballe Jensen GCDA
Computing Industry Certifications and Security Kurt Jensen GSEC
SOHO Remote Access VPN. Easy as Pie, Raspberry Pi... Eric Jodoin GSEC
Straddling the Next Frontier Part 1: Quantum Computing Primer Eric Jodoin GCIA
Implementing Active Defense Systems on Private Networks Josh Johnson GCIA
Finding Evil in the Whitelist Josh Johnson GSEC
Classic Attacks Lessons from the Past Brian Johnson GSEC
Netfilter and IPTables - A Structural Examination Alan Jones GSEC
Enhancing E-mail Security using Exchange Server 2003 and Outlook 2003 Cheryl Jones GCWN
Public-key Cryptography: PGP, SSL, and SSH Thomas Jonson GSEC
Setting up a Secure Home Office Network Perry Jurancich GSEC
Implementation Methodology for Information Security Management System (to comply with BS 7799 Requirements) Avinash Kadam GSEC
Inverse Mapping Using Disguised TCP Resets Minna Kangasluoma GSEC
CyberPorn Tricks and Awareness Stephen Karrick GSEC
Framework for Innovative Security Decisions Ergash Karshiev GCED
Social Engineering: Manipulating the Source Jared Kee GCIA
Indicators of Compromise TeslaCrypt Malware Kevin Kelly GCIA
Steganography in the Corporate Environment Joann Kennedy GSEC
Deception Techniques as Part of Intrusion Detection Strategy Colm Kennedy GCIA
Complement a Vulnerability Management Program with PowerShell Colm Kennedy GSEC
OPM vs. APT: How Proper Implementation of Key Controls Could Have Prevented a Disaster David Kennel GSEC
Applying the Scientific Method to Threat Hunting Jeremy Kerwin GCDA
Open Source IDS High Performance Shootout George Khalil GCIA
Password Security-- Thirty-Five Years Later George Khalil GSEC
Building Servers as Appliances for Improved Security Algis Kibirkstis GSEC
GIAC GCIA Assignment - Pass Nathan Kim GCIA
Threat Intelligence: Planning and Direction Brian Kime GSEC
Packet Sniffing In a Switched Environment Tom King GSEC
Securing Wireless Clients using IPsec via Linux Gateway Robert King GSEC
Preventing Your Computer from Becoming a Zombie Jamy Klein GSEC
GIAC GCIA Assignment - Pass Adam Kliarsky GCIA
Detecting Attacks Against The 'Internet of Things' Adam Kliarsky GCIA
Case Study: How CIS Controls Can Limit the Cascading Failures During an Attack Bill Knaffl GSEC
Simple Approach to Access Control: Port Control and MAC Filtering Bill Knaffl GCCC
Inside Mac Security Ben Knowles GSEC
Risk Assessment in the University Setting Kent Knudsen GSEC
Integrating Real-Time Services on the Web Pete Kobak GSEC
NIDS Countermeasures: What, Why, Where, When, and How Jonathan Kobrick GSEC
Implementing Full Packet Capture Matthew Koch GCIA
An Introduction to Linux-based malware Matthew Koch GSEC
To CVP or not to CVP Kurt Koenigsknecht GSEC
Data Loss Prevention and a Point of Sales Breach Nicholas Kollasch GSEC
GIAC GCIA Assignment - Pass Frans Kollee GCIA
Attacks from Within: A Look at Security Concerns for ASPs Tyson Kopczynski GSEC
Lateral Leadership and Information Security Stefan Krampe GSEC
Security for a CRM environment Jason LaFrance GSEC
GIAC GCIA Assignment - Pass Gregory Lajon GCIA
Using rsync to centralize backups in small to medium-sized networks Jeff Lake GSEC
Real-Time Honeypot Forensic Investigation on a German Organized Crime Network Karim Lalji GCIA
GIAC GCIA Assignment - Pass Greg Lalla GCIA
Centralizing Event Logs on Windows 2000 Greg Lalla GSEC
GIAC GCIA Assignment - Pass Harvey Lange GCIA
Securing the Employees in a HIPAA-Regulated Environment Brian LaPointe GSEC
Twists in Security for Law Enforcement Conrad Larkin GSEC
GIAC GCIA Assignment - Pass Glenn Larratt GCIA
SSH and Intrusion Detection Heather Larrieu GSEC
GIAC GCIA Assignment - Pass Heather Larrieu GCIA
Voice over Internet Protocol: A Discussion on How to Securely Implement on an Existing Data Network Kevin Larson GSEC
GIAC GCIA Assignment - Pass Michael Lastor GCIA
Evaluation of Comprehensive Taxonomies for Information Technology Threats Steven Launius GCIA
Risk Management with Automated Feature Analysis of Software Components Steven Launius GSEC
Incident Response in a Zero Trust World Heath Lawson GCIA
Securely Operating Windows Terminal Services/Remote Desktop Multiplatform Environment Keith Lawson GSEC
Slippery Slope or Terra Firma? Current and Future Anti-Spam Measures Charlene LeBlanc GSEC
Backup Rotations - A Final Defense Stephen Lennon GSEC
Profiling Web Applications for Improved Intrusion Detection Manuel Leos Rivas GCIA
Securing the Home IoT Network Manuel Leos Rivas GSEC
Intrusion Prevention System Signature Management Theory Joshua Levine GCIA
Making Smart Cards Work in the Enterprise Brett Lewis GSEC
Practical approaches for MTCP Security Joshua Lewis GCIA
The Need for an Established Security Awareness Training Program Richard Lewis GSEC
PiOT - a small form factor defense for indefensible devices James Leyte-Vidal GCIA
PORTKnockOut: Data Exfiltration via Port Knocking over UDP Matthew Lichtenberger GCIA
Remote Users: Trust verses Necessity Chrystal Lionberger GSEC
Moving Legacy Software and FOSS to the Cloud, Securely Larry Llewellyn GSEC
Implementation and use of DNS RPZ in malware and phishing defence Alex Lomas GSEC
Good News, Bad News: The Infosec Issues of Usenet Bob Long GSEC
Scalable Methods for Conducting Cyber Threat Hunt Operations Michael Long II GSEC
Trends in Bot Net Command and Control Will Longman GSEC
Implementing IEEE 802.1x for Wired Networks Johan Loos GCWN
Secure File Transfer with SSH2 Renato Lozano GSEC
GIAC GCIA Assignment - Pass Terry MacDonald GCIA
Using Network Based Security Systems to Search for STIX and TAXII Based Indicators of Compromise Jason Mack GCIA
GIAC GCIA Assignment - Pass Carl Madzelan GCIA
GIAC GCIA Assignment - Pass Andrew Magnusson GCIA
SDN Southbound Threats Mohamed Mahdy GSEC
Basic NGIPS Operation and Management for Intrusion Analysts Mike Mahurin GCIA
GIAC GCIA Assignment - Pass Rhonda Maluia GCIA
Rootkit: Attacker Undercover Tools Saliman Manap GSEC
GIAC GCIA Assignment - Pass David Manley GCIA
The User Agent Field: Analyzing and Detecting the Abnormal or Malicious in your Organization Darren Manners GCIA
An Early Malware Detection, Correlation, and Incident Response System with Case Studies Yaser Mansour GCIA
Using Decision Tree Analysis for Intrusion Detection: A How-To Guide Jeff Markey GCIA
OS X as a Forensic Platform David Martin GCIA
Gh0st in the Dshell: Decoding Undocumented Protocols David Martin GCIA
Tracing the Lineage of DarkSeoul David Martin GSEC
NetFlow Collection and Analysis Using NFCAPD, Python, and Splunk David Mashburn GCIA
Tagging Data to Prevent Data Leakage (Forming Content Repositories) Michael Hendrik Matthee GCIA
Increase the Value of Static Analysis by Enhancing its Rule Set Michael Hendrik Matthee GCCC
Agile defensive perimiters: forming the security test regression pack Michael Hendrik Matthee GSEC
Challenges to Implementing Network Access Control Joseph Matthews GCIA
Securing Against the Most Common Vectors of Cyber Attacks Joseph Matthews GCCC
A Secure Approach to Deploying Wireless Networks Joseph Matthews GSEC
GIAC GCIA Assignment - Pass Rob McBee GCIA
Securing Task Station Computers Using Windows 2000 Group Policy Roger McClinton GCWN
Case Study - Assessing the Impact of Unsolicited Commercial E-mail in a Large Corporation Joseph Mccomb GSEC
PHYSICALLY SECURITY CONSIDERATIONS FOR HIGHLY DISTRIBUTED AUTOMATION NETWORKS Rob McComber GSEC
Building Cloud-Based Automated Response Systems Mishka McCowan GMON
Using Vagrant to Build a Manageable and Sharable Intrusion Detection Lab Shaun McCullough GCIA
Lenovo and the Terrible, Horrible, No Good, Very Bad Week Shaun McCullough GSEC
DevOps Rescuing White Lodging from Breaches Tobias Mccurry GSEC
The Effectiveness of Tools in Detecting the 'Maleficent Seven' Privileges in the Windows Environment Tobias Mccurry GCWN
GIAC GCIA Assignment - Pass Michael McDonnell GCIA
Catch Me If You Can: Detecting Server-Side Request Forgery Attacks on Amazon Web Services Sean McElroy GCIA
Testing Application Identification Features of Firewalls William McGlasson GCIA
Event Correlation Systems - The New Threat Frontline Kevin McIntyre GSEC
Central Auditing of Windows NT Using Windows Script Host (WSH) Roger Mclaren GCWN
Secure Open-Source Network IDS Jared McLaren GSEC
GIAC GCIA Assignment - Pass Jared McLaren GCIA
Limiting the Exposure of a Netware Server in an IP World Dana Mclaughlin GSEC
Securing an IIS 5.0 Web Server on Windows 2000 using Security Tools and Templates Graeme McLintock GSEC
Importance of a Standard Methodology in Computer Forensics Jim McMillan GSEC
Methods to Employ Zeek in Detecting MITRE ATT&CK Techniques Michael McPhee GCIA
Evil Through the Lens of Web Logs Russ McRee GCIA
SMaK Russ McRee GSEC
How to Install IC Radius and Extend via Custom Perl Script Michael Meacle GSEC
Managing Network Firewalls -A Love/Hate Relationship James Medeiros GSEC
Steganography Michael Meister GSEC
Recognizing Suspicious Network Connections with Python Gregory Melton GCIA
GIAC GCIA Assignment - Pass John Melvin GCIA
GIAC GCIA Assignment - Pass Karim Merabet GCIA
Configuring Watchguard Proxies: A Guideline to Supplementing Virus Protection and Policy Enforcement Alan Mercer GSEC
Black ICE 2.5 Events, False Positives and Custom Attack Signatures Alan J Mercer GSEC
Linux Kernel Hardening Taylor Merry GSEC
Stopping P2P: How to Rid Your Network of Unwanted P2P Traffic Russell Meyer GSEC
Challenges of Managing an Intrusion Detection System (IDS) in the Enterprise Russell Meyer GCIA
CA-ACF2 User Account Cleanup Scott Meyer GSEC
Current Steganography Tools and Methods Erin Michaud GSEC
SOAP, Web Services and Security Cameron Michelis GSEC
The Case for Endpoint Visibility Robert Mier GSEC
Building a Custom SIEM Integration for an API-Based Log Source Azure AD Graph Sign-In Events Jason Mihalow GSEC
Exploits of Yesteryear Are Never Truly Gone Marsha Miller GCIA
GIAC GCIA Assignment - Pass Kevin Miller GCIA
Privacy and the Internet of Things Peter Milley GSEC
Implementing/Re-Implementing Change Control Policies Derek Milroy GSEC
A Virtually Secure Browser Seth Misenar GSEC
GIAC GCIA Assignment - Pass Orazio Mistretta GCIA
Wireless LANs - the Big New Security Risk Gordon Mitchell GSEC
Intrusion Report for SANS University Gaspar Modelo Howard GCIA
PCI DSS and Security Breaches: Preparing for a Security Breach that Affects Cardholder Data Christian Moldes GCCC
GIAC GCIA Assignment - Pass Jalal Moloo GCIA
Scripting as a Method of Establishing a Reliable Baseline Posture George Moncrief GSEC
Distributed Systems Security: Java, CORBA, and COM+ April Moreno GSEC
Log2Pcap Joaquin Moreno Garijo GCIA
Wireless Security: Past, Present and Future Keith Morris GSEC
The Fall of SS7 - How Can the Critical Security Controls Help? Hassan Mourad GCCC
Sleeping Your Way out of the Sandbox Hassan Mourad GSEC
Data Charging Bypass: How your IDS can help Hassan Mourad GCIA
Mimikatz Overview, Defenses and Detection James Mulder GSEC
SANS and GIAC Together Again Don Murdoch GCWN
Putting Eyes on the Wire Don Murdoch GSEC
GIAC GCIA Assignment - Pass Don Murdoch GCIA
Case Study: Deploying and Configuring a Netscreen 100 Firewall Appliance to Secure the Network James Murphy GSEC
Secure Email Deplyment with Windows 2003 and Exchange 2003 Kevin Murphy GSEC
GIAC GCIA Assignment - Pass Keven Murphy GCIA
An Analysis of the Snort Data Acquisition Modules Christopher Murphy GCIA
Introduction to the Security Audit Process Jim Murray GSEC
Adapting Windows Security for Legacy Applications Edward Myers GSEC
Practical Attack Detection, Analysis, and Response using Big Data, Semantics, and Kill Chains within the OODA Loop Brian Nafziger GCIA
A Practical Big Data Kill Chain Framework Brian Nafziger GSEC
Data Mining in the Dark: Darknet Intelligence Automation Brian Nafziger GCIA
Meeting FISMA Requirements for Systems Constructing a System Security Plan Daniel Nagy GSEC
Protecting your Internal Systems from a Compromised Host Michael Nancarrow GSEC
Vulnerability Assessment Homyar Naterwala GSEC
IT Security Awareness Best Practices James Neidich GSEC
Intrusion Detection Through Relationship Analysis Patrick Neise GCIA
Security through Configuration Control at Scale – An Introduction to Ansible Patrick Neise GSEC
GIAC GCIA Assignment - Pass Tim Newell GCIA
Instant Messaging technology for the business market. Do the advantages outweigh the risks? Phuong Nguyen GSEC
SSL/TLS Interception Challenge from the Shadow to the Light Ngoc Huy Nguyen GCIA
Building a Security Test Environment Richard Noel GSEC
Business Consideration and Network Implementation of Generally Accepted Security Standards Patrick Nolan GSEC
GIAC GCIA Assignment - Pass David Nolan GCIA
Securing NT4 Workstations in an Educational Computer Lab Environment Eric Nooden GSEC
Security Issues in NIS Jim O'Brien GSEC
Automated Network Defense through Threat Intelligence and Knowledge Management Christopher O'Brien GCIA
Infrastructure Security Architecture for Effective Security Monitoring Luciana Obregon GCIA
Secure Architecture for Industrial Control Systems Luciana Obregon GSEC
A Technical Approach at Securing SaaS using Cloud Access Security Brokers Luciana Obregon GCCC
Detecting and Responding to Data Link Layer Attacks Terrence OConnor GCIA
About Face: Defending Your Organization Against Penetration Testing Teams Terrence OConnor GSEC
PureSecure(TM) Complete Intrusion Detection Jason Oseen GSEC
Wireless Networking Security: As Part of Your Perimeter Defense Strategy Daniel Owen GSEC
Supplementing Windows Audit, Alerting, and Remediation with PowerShell Daniel Owen GCWN
Basic Travel Security Revisited Thomas Palmer GSEC
Intel IXP Network Processor Based Intrusion Detection Greg Pangrazio GCIA
Securing a Windows 2000 IIS Web Server - Lessons Learned Harpal Parmar GSEC
A Secure Windows 2000 Infrastructure for GIAC Enterprises Harpal Parmar GCWN
Symantec Enterprise VPN Solution: Extending our Network through the Internet Robin Parrish GSEC
Prosecution: A Subset of Incident Response Procedures Gary Pasikowski GSEC
Guide to Deploying a Windows 2000/Exchange 2000/File/Print Server in a Single Server Environment Gary Pasikowski GCWN
GIAC GCIA Assignment - Pass Andrew Patrick GCIA
Implementing a Security Program from the Beginning, for the Beginner Thomas Paulger GSEC
Efficacy of UNIX HIDS Janusz Pazgier GCIA
Viral Polymorphism Stephen Pearce GSEC
The "Great Firewall" of China: A Real National Strategy to Secure Cyberspace? Carolyn Pearson GSEC
Securing Microsoft Outlook 2000 Using the Outlook Security Update in a Microsoft Exchange Server 5.5 Environment Brad Peer GSEC
Encrypting Mail in a Windows Network David Perez GCWN
GIAC GCIA Assignment - Pass David Perez GCIA
Creating a Secure and Compliant Digital Forensics and Incident Response Network with Remote Access Scott Perry GSEC
Hardening Oracle in a Linux (Unix) Environment Robert Persick GSEC
GIAC GCIA Assignment - Pass Bente Petersen GCIA
IDS Performance in a Complex Modern Network: Hybrid Clouds, Segmented Workloads, and Virtualized Networks Brandon Peterson GCIA
Secure Network Design: Micro Segmentation Brandon Peterson GSEC
GIAC GCIA Assignment - Pass Bill Phillips GCIA
Detailed Forensic Procedure for Laptop computers Matt Pierce GSEC
Auditing-In-Depth For Solaris Jeff Pike GSEC
Log Consolidation with syslog Donald Pitts GSEC
GIAC GCIA Assignment - Pass Donald Pitts GCIA
PDF Metadata Extraction with Python Christopher Plaisance GPYC
GIAC GCIA Assignment - Pass Geoffrey Poer GCIA
Common Ground - A Discussion of Standards in Network Security and How to Extend Them into the Network Assessment Arena Timothy Politowicz GSEC
Dissect the Phish to Hunt Infections Seth Polley GCED
Secure Internet Gateways: Backing Down from a Fight Seth Polley GCIA
ComBAT Phishing with Email Automation Seth Polley GCCC
Securing the Corporate WLAN in a Healthcare Regulated Organization Jim Pomeroy GSEC
A Novice's Guide to Securing Windows XP Home Edition Timothy Potter GSEC
Setting Up Controlled Virtual Private Networks Using Microsoft's Proxy Server and Routing and Remote Access Service Mike Powell GSEC
NERC CIP Patch Management and Cisco IOS Trains Aaron Prazan GSEC
Web Application Firewalls Jason Pubal GCIA
Building an Application Vulnerability Management Program Jason Pubal GSEC
Breach Control: Best Practices in Health Care Brian E. Quick GCIA
Configuration Management with Windows PowerShell Desired State Configuration (DSC) Brian E. Quick GSEC
GIAC GCIA Assignment - Pass Joseph Rach GCIA
Case Study: Critical Controls that Could Have Prevented Target Breach Teri Radichel GSEC
Balancing Security and Innovation With Event Driven Automation Teri Radichel GCIA
Packet Capture on AWS Teri Radichel GCCC
Remotely Accessing Sensitive Resources Jason Ragland GSEC
GIAC GCIA Assignment - Pass Edward Ray GCIA
Understanding Oracle Auditing Wayne Reeser GSEC
Lessons in Learning Network Security Coleen Regalmuto GSEC
GIAC GCIA Assignment - Pass Nils Reichen GCIA
Using SSL to Secure LDAP Traffic to Microsoft Domain Controllers Andrew Reid GSEC
Creating a Certificate-Enabled Public Web Site With Windows 2000 Michael Reiter GCWN
Firewall Load Balancers Megan Restuccia GSEC
Securing Windows Service Accounts Gerald Rice GSEC
Using the Department of Defense Architecture Framework to Develop Security Requirements James Richards GSEC
Finding the Right Instant Messaging Solution for Your Company Jeff Richeson GSEC
A Framework for Assessing 20 Critical Controls Using ISO 15504 and COBIT 5 Process Assessment Model (PAM) Muzamil Riffat GCCC
Spoofing: An Overview of Some Current Spoofing Threats Neil Riser GSEC
Windows Installed Software Inventory Jonathan Risto GCCC
Distributed Intrusion Detection Systems: An Introduction and Review Royce Robbins GSEC
A Hands-on XML External Entity Vulnerability Training Module Carrie Roberts GCIA
Discovering Security Events of Interest Using Splunk Carrie Roberts GSEC
Information Security in Higher Education: Threats & Response Thomas Roberts GSEC
Electronic Medical Records: Success Requires an Information Security Culture Thomas Roberts GSEC
Cybersecurity Inventory at Home Glen Roberts GCCC
Continuous Security: Implementing the Critical Controls in a DevOps Environment Alyssa Robinson GCCC
Securing Windows 2000 for Web Server Deployment Jay Robinson GCWN
Neutrino Exploit Kit Analysis and Threat Indicators Luis Rocha GCIA
Critical Security Controls: Software Designed Inventory, Configuration, and Governance Lenny Rollison GCCC
Risks and Rewards of Instant Messaging in the Banking Sector Nicholas Rose GSEC
Implementing a Secure WebDAV System Richard Ross GSEC
GIAC GCIA Assignment - Pass Reuben Rubio GCIA
Obfuscation and Polymorphism in Interpreted Code Kristopher Russo GSEC
Novell NetWare 6 Security Baseline Configuration John Saley GSEC
Man-In-The-Middle Attack Against Modbus TCP Illustrated with Wireshark Gabriel Sanchez GCCC
GIAC GCIA Assignment - Pass Geoffrey Sanders GCIA
Measuring effectiveness in Information Security Controls Manuel Humberto Santander Pelaez GSEC
GIAC GCIA Assignment - Pass Manuel Humberto Santander Pelaez GCIA
Next Generation Endpoint Protection??CIS Control 8, Malware Defense Effectiveness, Performance Metrics and False Positive Rates Nolan Sapp GCCC
Secure Setup of a Corporate Detection and Scanning Environment Dieter Sarrazyn GSEC
Detecting and Preventing Rogue Devices on the Network Ibrahim Halil Saruhan GCIA
The Role of Static Analysis in Heartbleed Jeff Sass GSEC
The Role of Static Analysis in Hardening Open Source Intrusion Detection Systems Jeff Sass GCIA
Securing the GPRS Network Infrastructure - a Network Operator's Perspective Jonathan Sau GSEC
A Guide to Hash Algorithms Britt Savage GSEC
GIAC GCIA Assignment - Pass Joanne Schell GCIA
GIAC GCIA Assignment - Pass Alexander Schinner GCIA
Nessus: Vulnerability Scanning and Beyond Paul Schmelzel GSEC
GIAC GCIA Assignment - Pass Paul Schmelzel GCIA
SANS/GIAC Enterprises Active Directory Merger - Design, Security Policy, and Auditing Practices Ben Schmitt GCWN
Taking control of your Internet email using Sendmail and Mimedefang. Matthew Schumacher GSEC
Security Considerations for Team Based Password Managers Matthew Schumacher GSEC
Auditing and Securing Multifunction Devices Charles Scott GSEC
Designing and Implementing a Honeypot for a SCADA Network Charles Scott GCIA
Monitoring for Security Events Using Windows Management Instrumentation Stephen Seigler GSEC
GIAC GCIA Assignment - Pass Michael Semling GCIA
Denial of Service Deterrence Ryan Sepe GSEC
Natural Language Processing for the Security Analyst Daniel Severance GMON
Deploying Secure Public Kiosk Networks Jon Shaffer GSEC
How to Choose an Intrusion Detection Solution Baiju Shah GSEC
Enhancing Intrusion Analysis through Data Visualization Wylie Shanks GCIA
Building and Managing a PKI Solution for Small and Medium Size Business Wylie Shanks GSEC
Consolidated Security Event Monitoring for Microsoft Windows NT 4.0 Server Jeff Shawgo GCWN
GIAC GCIA Assignment - Pass Brian Sheffler GCIA
GIAC GCIA Assignment - Pass Jerry Shenk GCIA
GIAC GCIA Assignment - Pass Thomas Shepherd GCIA
Securing the Gold through Better Network Design: A Case Study Todd Sheppard GSEC
Trinity v3 DDoS: Tomorrow's Headline? David Sheridan GSEC
Securing Mac OS X 10.1.5 Using Free Software David Shinberg GSEC
Securing Windows 2000 with Security Templates Patricia Shirer GCWN
Protecting Home Devices from Malicious or Blacklisted Websites Sumesh Shivdas GCIA
Automating Provisioning of NetFlow Analyzers Sumesh Shivdas GCCC
Practical Considerations on IT Outsourcing Implementation under the Monetary Authority of Singapore's Technology Risk Management Guidelines Andre Shori GCCC
GIAC GCIA Assignment - Pass Ron Shuck GCIA
Risk Assessment of Social Media Robert Shullich GSEC
GIAC GCIA Assignment - Pass Chris Sia GCIA
AES: The New Key on the Block Christopher Silveira GSEC
Securing Windows running Trend Micro Services with Security Templates Curtis Simonson GCWN
Is It Patched Or Is It Not? Jason Simsay GSEC
Visa's 3-D Secure™:Secure Online Payment Authentication Dominique Singer GSEC
Why The Need for Internet Content Filtering/Management- A Close Look at Internet Manager Elron Web Inspector 6.03 Michell Singleton GSEC
Why Your Switched Network Isn't Secure Steven Sipes GSEC
Securing Public Access Computers In a Library Setting Andrew Sippel GSEC
GIAC GCIA Assignment - Pass Janice Slocumb GCIA
Detection of Malicious Documents Utilizing XMP Identifiers Josiah Smith GMON
Group Policies for GIAC Enterprises Ricky Smith GCWN
Information Security Best Practices While Managing Projects Dallas Smith GSEC
Do You Copy? Security Issues with Digital Copiers Kevin Smith GSEC
Catching Flies: A Guide to the Various Flavors of Honeypots Scott Smith GCIA
GIAC GCIA Assignment - Pass Ricky Smith GCIA
Filtering Routers in a Small Office/Home Office with a Mixed OS Environment Ricky Smith GSEC
Defending Against Spyware Invasion Jeff Smith GSEC
Security Awareness: Help the Users Understand Kenton Smith GSEC
Shedding Light on Cross Domain Solutions Scott Smith GSEC
Wireless Security Dispelling Myths Eric Smith GSEC
Malicious Code: VBS/OnTheFly (Anna Kournikova) Marco Smitshoek GSEC
Creating an Active Defense PowerShell Framework to Improve Security Hygiene and Posture Kyle Snihur GCWN
Migration to Office 365, a Case Study on Security and Administration in the Non-profit Sector Richard Snow GCWN
A Comparison of 3rd Party Anti-Spyware Tools for a Business Environment Richard Snow GCWN
Security for Online Transaction Processing in a White Label Financial Switch Fabian Soler GSEC
Case Study: Improving Security in Corporate (SMTP) E-Mail Delivery Brian Sommers GSEC
Secure Data. Is there Such a Thing? Sheetal Sood GSEC
Secure Browsing Environment Robert Peter Sorensen GSEC
Information Security.s Unlikely Advocae Matt Sorensen GSEC
GIAC GCIA Assignment - Pass Robert Peter Sorensen GCIA
Detecting Penetration Testers on a Windows Network with Splunk Fred Speece GCIA
Kerberos and Access Token Limitations Joshua Sprenger GSEC
Securing a Windows 2000 Application Server With Security Templates Joshua Sprenger GCWN
GIAC GCIA Assignment - Pass Philipp Stadler GCIA
Integrating Wired and Wireless IDS Data Michael Stanton GCIA
Security Process for the implementation of a Company's extranet network connections. Kirk Steinklauber GSEC
Can Hackers Turn Off Your Lights? Jonathan Stidham GSEC
Remote Access VPN Security Concerns and Policy Enforcement Mike Stines GSEC
Check Point Firewall Log Analysis In-Depth Mark Stingley GCIA
Track 3 - Intrusion Detection In-Depth GIAC Certified Intrusion Analyst (GCIA) Practical Assignment Version 4.0 Jan Stodola GCIA
Novell Small Business Suite Security Recommendations Scott Stone GSEC
Leveraging the Asset Inventory Database Timothy Straightiff GCCC
Information Security Managing Risk with Defense in Depth Ken Straub GSEC
Can the "Gorilla" Deliver? Assessing the Security of Google's New "Thread" Internet of Things (IoT) Protocol Kenneth Strayer GCIA
Indelicate Balance: The Challenge of Content Filtering Systems in a Litigious Society Grant Streeter GSEC
GIAC GCIA Assignment - Pass Daniel Strom GCIA
The Packet Filter: A Basic Network Security Tool Daniel Strom GSEC
Online Backup: Worth the Risk? Stephen Strom GSEC
PestPatrol in a Corporate Environment: A Case Study In Information Security Tim Strong GSEC
Assisted Security Investigations Using Cognitive Computing Lori Stroud GSEC
Case Study: Transforming a Traditional Windows Client/Server Application Into a Secured ASP Offering David Strubbe GSEC
Defending Infrastructure as Code in GitHub Enterprise Dane Stuckey GCIA
Apache modules for rapid mitigation of security threats Stephanie Sullivan GSEC
Database Encryption Things you know before you encrypt James Summers GSEC
GIAC GCIA Assignment - Pass James Summers GCIA
Poaching: Hunting Without Permission David Switzer GCIA
GIAC GCIA Assignment - Pass Peter Szczepankiewicz GCIA
GIAC GCIA Assignment - Pass Chris Talianek GCIA
Zeek Log Reconnaissance with Network Graphs Using Maltego Casefile Xiao Tan GCIA
Implementing a Secure Microsoft Windows Server 2003 Terminal Services Infrastructure: A Case Study for ACME Healthcare, Inc. James Tarala GCWN
Virii Generators: Understanding the Threat James Tarala GSEC
The Need for Information Security in Today's Economy Jeff Tarte GSEC
Automated Detection and Analysis using Mathematical Calculations Lionel Teo Jia Yeong GSEC
Learning from the Dridex Malware - Adopting an Effective Strategy Lionel Teo Jia Yeong GCIA
An Approach to Reducing Federal Data Breaches David Thomas GSEC
GIAC GCIA Assignment - Pass Ashley Thomas GCIA
GIAC Certified Windows Security Administrator Bryce Thompson GCWN
Smart Card Authentication: Added Security for Systems and Network Access Lawrence Thompson GSEC
Is It Really Gone? Grant Thompson GSEC
Implementing a Secure Wireless Network for a Windows Environment Dan Thompson GCWN
Securing Wireless Networks Brett Thorne GSEC
How to Avoid Inofrmation Disclosure when Managing Windows with WMI Alex Timkov GSEC
Protecting Sensitive Data in Secure Domains Mikael Trosell GSEC
Host vs. Network-Based Intrusion Detection Systems David Trzcinski GSEC
UNIX System Management and Security: Differences between Linux, Solaris, AIX and HP-UX Haral Tsitsivas GSEC
GIAC GCIA Assignment - Pass Miika Turkia GCIA
The Life Cycle of A Security Awareness Program:What has and has not Worked John Turner GSEC
.Securing the Cisco Aironet 1200 Access Point. Jeffrey Turner GSEC
Vulnerabilities Secure Base Build of AIX 5.1 Al Un GSEC
Using IDS to Evaluate Outbound Port Usage for Security and Reduction of IDS Alerts: A Case Study Ken Underwood GSEC
Practical Approach to Detecting and Preventing Web Application Attacks over HTTP/2 Russel Van Tuyl GCIA
VPNScan: Extending the Audit and Compliance Perimeter Robert Vandenbrink GSEC
IOSMap: TCP and UDP Port Scanning on Cisco IOS Platforms Robert Vandenbrink GCIA
SSL/TLS: What's under the Hood Sally Vandeven GSEC
Rootkit Detection with OSSEC Sally Vandeven GCIA
Web Application Attack Analysis Using Bro IDS Ganesh Kumar Varadarajan GCIA
Maintaining Departmental Security in a Centralized Environment: Keeping Things Secure When You Have to Cooperate Brent Veenstra GSEC
Windows 2000 Monitoring from Windows NT in a Workgroup Frank Vianzon GCWN
A Case Study on Securing Medical Practitioners' Offices and Making The Offices HIPAA-Aware Ira Victor GSEC
GIAC GCIA Assignment - Pass Vance Victorino GCIA
Methods for the Controlled Deployment and Operation of a Virtual Patching Program William Vink GCIA
Custom IIS Authentication and Access Control using ISAPI Filter Arsne von Wyss GCWN
The Limits on Wireless Security: 802.11 in Early 2002 James Voorhees GSEC
Distilling Data in a SIM: A Strategy for the Analysis of Events in the ArcSight ESM James Voorhees GCIA
60 Seconds on the Wire: A Look at Malicious Traffic Kiel Wadner GCIA
Security Implications of iOS Kiel Wadner GSEC
Security Tools for the SMB and SME Segments James Waite GCIA
The Firewall Has Been Installed, Now What? Developing a Local Firewall Security Policy Richard Walker GSEC
Meeting the challenges of automated patch management John Walther GSEC
Detecting Torrents Using Snort Rick Wanner GCIA
NetTop for Data Privacy through Secure Desktops Rick Wanner GSEC
Setting up Splunk for Event Correlation in Your Home Lab Aron Warren GCIA
Diskless Cluster Computing: Security Benefit of oneSIS and Git Aron Warren GSEC
Securing Microsoft Exchange with Ciphertrust Ironmail John Warren GSEC
Corporate vs. Product Security Philip Watson GSEC
Open Source Host Based Intrusion Detections System (OHIDS) Tom Webb GCIA
An Architecture for Implementing Enterprise Multifactor Authentication with Open Source Tools Tom Webb GSEC
Benefits and Adoption Rate of TLS 1.3 Ben Weber GCIA
Role-Based Access Control: The NIST Solution Hazen Weber GSEC
GIAC GCIA Assignment - Pass Michael Wee GCIA
Intrusion Analysis Using Windows PowerShell Mike Weeks GCIA
Application White-listing with Bit9 Parity Mike Weeks GSEC
Threat Rigidity in Cybersecurity Mike Weeks GCCC
Design a Secure Windows 2000 Infrastructure Erik Weinmeister GCWN
Critical Infrastructure Protection: Establishing an Information Sharing and Analysis Center Can Be Like Developing an Organizational Security Policy Frances Wentworth GSEC
Server Security in a Citrix Presentation/Terminal Server Environment Shane Wescott GSEC
GIAC GCIA Assignment - Pass Daniel Wesemann GCIA
The Age of Encryption Wesley Whitteker GCIA
Point of Sale (POS) Systems and Security Wesley Whitteker GSEC
GIAC GCIA Assignment - Pass Kris Wicks GCIA
Preparation@Incident Response.security Dan Widger GSEC
Implementing n Internet Content Filtering and Reporting Program Eric Wilkens GSEC
Combating the Lazy User: An Examination of Various Password Policies and Guidelines Sam Wilson GSEC
Securing the Soft Underbelly of a Supercomputer with BPF Probes William Wilson GCDA
Network Forensics and HTTP/2 Stefan Winkel GCIA
Security Assurance of Docker Containers Stefan Winkel GCCC
Forensicating Docker with ELK Stefan Winkel GSEC
Cyber IPB Steve Winterfeld GSEC
Hunting and Gathering with PowerShell Troy Wojewoda GSEC
Stronger Authentication Methods: Biometrics and Public Acceptance Mark Wolansky GSEC
An Overview of 802.11 Wireless Network Security Standards & Mechanisms Luis Carlos Wong Or GSEC
Overview of Biometric Encryption Mark Wood GSEC
GIAC GCIA Assignment - Pass Alan Woodroffe GCIA
Securing the Wile Modem: A Case Study on the Use of Policies, War Dialers and Firewalls for Phone Lines Archie Woodworth GSEC
GIAC GCIA Assignment - Pass Michael Worman GCIA
Creating Security Policies - Lessons Learned Mark Worthington GSEC
Intrusion Detection, Evasion, and Trace Analysis Michael Wyman GCIA
Echelon: The Dangers of Communication in the 21st Century Chad Yancey GSEC
Do Random IP Lookups Mean Anything? Jay Yaneza GCIA
Development of a Network Intrusion Detection Policy Frank Yarnell GSEC
Secure Shell Daemon crc32 Compensations Attack Detector Vulnerability Tim Yeager GSEC
PLC Device Security - Tailoring needs Wen Chinn Yew GSEC
GIAC GCIA Assignment - Pass Bill Young GCIA
Comparative Risk Analysis Between GPON Optical LAN and Traditional LAN Technologies Jason Young GSEC
How to Effectively Secure Your Business Albert Yu GSEC
Paying Attention to Critical Controls Edward Zamora GCCC
Cloud Assessment Survival Guide Edward Zamora GSEC
The Difficulty of Detecting Rogue Wireless Access Points on a University or Organization Campus Anna Zapata GSEC
Designing a Secure Windows 2000 Infrastructure Lenny Zeltser GCWN
The Evolution of Malicious Agents Lenny Zeltser GSEC
An Informal Analysis of One Site's Attempts to Contact Host Owners Laurie Zirkle GSEC