SEC504: Hacker Tools, Techniques, and Incident Handling
SEC504Offensive Operations
Cybersecurity Webinars and Workshops
Unlock industry insights and hands-on learning with upcoming SANS webcasts and workshops. View archived webcasts here.
Breaking the Lock: How MFA Can Still Be Defeated
Multi-Factor Authentication (MFA) is often hailed as the gold standard for securing online accounts – but is it truly unbreakable?
WebinarOffensive Operations
- 15 May 2025
- 10:30 UTC
- Jean-François Maes
OT Ransomware on the Rise – How to Protect Your Operations and Business
OT ransomware is a growing threat to any organization that relies on ICS/OT to power its operations. Whether securing critical infrastructure or ensuring the continuity of manufacturing, pharmaceuticals, food and beverage production, or other industrial processes, protecting these environments is essential.
WebinarIndustrial Control Systems Security
- 16 May 2025
- 09:00 UTC
- Tim Conway, Robert M. Lee & Lesley Carhart
Tactical Auditing and Monitoring
To achieve their objectives in our environment, attackers must move beyond their initial compromise and interact with our environment. Which means that we have the home field advantage - *if* we enable appropriate auditing and monitoring. This session will dig into some specific tactics that leverage that home field advantage and make it easier for us to effectively detect and respond.
WebinarCybersecurity and IT Essentials
- 19 May 2025
- 17:30 UTC
- Greg Scheidel
Tales from the Cryptography
From an open-source project used by millions through proprietary Java code to a Fortune 500 developer company's software product, we will look at the mistakes made by programmers to demonstrate the truth in the common (although not very elaborate) saying in the industry; "cryptography is hard!" We will try to understand why these issues were still a thing in 2024 (and most likely, they will still exist in 2025) and what we can do about them.
WebinarCybersecurity and IT Essentials
- 19 May 2025
- 17:30 GST
- David Szili
Cloud Native Security Part 4: Policy as Code and Automated Governance
Traditional compliance and risk management techniques don’t scale in cloud-native environments—manual processes are now an anti-pattern for good security.
WebinarCloud Security
- 20 May 2025
- 11:00 UTC
- Jon Zeolla
Collaborative Mobile App Security Development and Analysis
Mobile app security is more critical—and more complex—than ever. With growing pressure to release quickly, mobile security teams often face tough trade-offs: limited access to devices, remote team coordination challenges, and slow, unreliable emulators that fail to mirror real-world behavior.
WebinarSecurity Awareness
- 20 May 2025
- 13:00 UTC
- Jeroen Beckers & Steven Smiley
SANS 2025 CTI Survey Webcast & Forum: Navigating Uncertainty in Today’s Threat Landscape
As the cyber threat landscape continues to evolve, the past year has presented unique challenges and opportunities for cyber threat intelligence professionals. For 2025, availability has become a critical focus within the CIA triad, with ransomware and service outages high on the agenda, and network defenders and CTI analysts acutely aware of the impact of large-scale network disruptions. Additionally, AI remains a double-edged sword, with both adversarial and beneficial applications advancing rapidly.
WebinarDigital Forensics and Incident Response
- 21 May 2025
- 10:30 UTC
- Rebekah Brown, Andreas Sfakianakis, Vicente Diaz + 4 more
SANS Security Leadership Nashville 2025: SANS@Night - Security Culture Unleashed: Transforming Mindsets, Driving Change
Are you struggling to get both executives and your workforce to buy into cybersecurity? Do you feel overwhelmed and need to scale the impact of your security team? Learn how to engage and transform your organization into the biggest believers and supporters of cybersecurity by institutionalizing a strong security culture.• What is security culture and how it enables you and your team.• Indicators of both a weak and strong security culture.• Top three drivers of a strong security culture.• Proven framework on how to build the culture you want.• The most common mistakes security teams and leaders make.• How to quantify and action your security culture.
WebinarCybersecurity Leadership
- 21 May 2025
- 18:00 UTC
- Lance Spitzner
Resiliency and Business Continuity in the Cloud Era
Outages happen—even in the cloud. As more organizations move critical operations to cloud platforms, the risks of downtime, identity service disruption, and security gaps are rising fast. The question isn’t if your cloud provider might fail you—it’s whether your continuity strategy is ready when it does.
WebinarCloud Security
- 22 May 2025
- 13:00 UTC
- Dave Shackleford & Chris Newman
SANS Security Awareness: Managing Human Risk 2024
teaser
WebinarArtificial Intelligence
- 25 May 2025
- 12:30 EDT
- Mr. Harry James Smith Jr., FirstName LastNamé, Robert M. Lee + 1 more
ログの機械学習における異常検知
大規模言語モデル (LLM)に基づくGPT(Generative Pretrained Transformers)は、多くの課題に対して優れた性能を発揮します。しかし、ログデータ内の異常値を見つけるためのトレーニングはされていません。
WebinarArtificial Intelligence
- 27 May 2025
- 09:00 JST
- Christopher Crowley
Anomaly Detection within Machine Learning on Logs
In this brief, informative, and useful session, Christopher Crowley will discuss the concept of a variational autoencoder, then show how you could implement this to train an autoencoder based on your logs.
WebinarArtificial Intelligence
- 28 May 2025
- 10:00 UTC
- Christopher Crowley