SANS Digital Forensics and Incident Response Blog: Author - sansinstitute

Get a MacBook Air, Toshiba Portege Ultrabook, or $850 Savings with SANS Online Training

The SANS Institute is providing your choice of a MacBook Air, Toshiba Portege Ultrabook, or $850 discount to students who register and pay for a qualifying* SANS vLive or OnDemand course by 11/28/12. Note: A SANS FOR508 - vlive - starts Nov 13 taught by Rob Lee, Chad Tilbury, and Alissa Torres. Sign up now! … Continue reading Get a MacBook Air, Toshiba Portege Ultrabook, or $850 Savings with SANS Online Training


FTK 4 Added to SANS FOR408 Windows Forensics Training Course

We are pleased to report the successful introduction of Access Data's Forensic Toolkit (FTK) v4 into the SANS FOR408 Course (Computer Forensic Investigations - Windows In-Depth). While students have access to well over a hundred free and open source tools during the course, we also felt it important for them to gain an understanding of … Continue reading FTK 4 Added to SANS FOR408 Windows Forensics Training Course


New Advanced Persistent Threat Based - FOR508 Released in On-Demand

It begins on Day 0: A 3-4 letter government agency contacts your organization about some data that was found at another location. Don't ask us how we know, but you should probably check out several of your systems. You are compromised by the APT. Most organizations are left speechless as 90% of all intrusions are … Continue reading New Advanced Persistent Threat Based - FOR508 Released in On-Demand


Advanced Persistent Threats Can Be Beaten

Reprinted fromhttp://www.csoonline.com/article/709239/advanced-persistent-threats-can-be-beaten-says-expert Advanced persistent threats can be beaten, says expert Detection is key, but how you respond to APTs is equally important ByTaylor Armerding August 06, 2012''"CSO''" Officially,advanced persistent threats (APTs)from China are not even happening. But everybody in information security, especially those trying to protect enterprises from economic espionage, knows that APTs, typically originating … Continue reading Advanced Persistent Threats Can Be Beaten


BRAND NEW #DFIR COURSE - Windows Memory Forensics In-Depth

Memory analysis skills are one of the most in-demand skills for digital forensics, incident response, and malware analysts today. This August, SANS is introducing a brand new 5-day class dedicated to Windows Memory Forensics. The hands-on course, written by memory forensics pioneer Jesse Kornblum, is incredibly comprehensive and SANS is proud to offer it in … Continue reading BRAND NEW #DFIR COURSE - Windows Memory Forensics In-Depth