SEC504: Hacker Tools, Techniques, and Incident Handling
SEC504Offensive Operations
Cybersecurity Webinars and Workshops
Unlock industry insights and hands-on learning with upcoming SANS webcasts and workshops. View archived webcasts here.
Is Access to Corporate Resources from any Device, Anywhere Truly Possible?
In today's dynamic digital landscape, the need for secure and seamless access to corporate resources from any device, anywhere is paramount. Join SANS Senior Instructor Dave Shackleford and HPE’s Darren Tidwell for an insightful webcast where we dive into the modern threats and security challenges that organizations face, and how innovative solutions like SSE from HPE address these challenges head-on. HPE Aruba Networking SSE securely connects users to business applications and resources within minutes, offering continuous visibility and robust zero trust controls. This solution is designed to empower and secure organizations navigating digital transformation, remote work environments, and complex business models involving employees, contractors, and third parties. Discover the benefits of HPE Aruba Networking’s platform with its cutting-edge security service edge (SSE) functionality, zero trust network access (ZTNA), cloud access security broker (CASB) support, and secure web gateway (SWG) for enhanced visibility and control. Key Discussion Points: Real-world solutions for modern cybersecurity challengesApplication-centric security and zero trust controlsEnsuring smooth user access and total security control Register now to gain valuable insights from industry experts and receive the associated product review written by Dave Shackleford.
WebinarCyber Defense
- 18 Jul 2024
- 13:00 UTC
- Dave Shackleford & Darren Tidwell
SANSFIRE 2024: SANS@Mic - Implant, Phone Home
This presentation delves into the strategic utilization of Windows HTTP libraries, WinInet and WinHTTP, for developing red team malware tools. Starting with an overview of these libraries, we highlight their pivotal roles in Windows networked applications, particularly in covert operations and data exfiltration scenarios. The WinInet API, primarily client-focused, and the server-optimized WinHTTP API are examined for their applicability in maintaining stealthy communications with command and control servers. A practical beaconing example in C++ will demonstrate each library's functionality in simulated red team scenarios. The session concludes with a case study on certificate pinning, essential for bypassing network security measures and enhancing the stealthiness of malware communications. Attendees will leave with a comprehensive understanding of how to choose and implement the right HTTP library to bolster the effectiveness and discretion of their malware initiatives.
WebinarCyber Defense
- 18 Jul 2024
- 19:15 UTC
- Jonathan Reiter
Decoding Time: Understanding Endianness and Timestamp Formats
In this workshop we'll unveil the mysteries behind how data is ordered (big or little endian) and how timestamps are stored and interpreted across different systems and applications. Through interactive exercises, you'll obtain the skills to correctly interpret data, reveal timestamps, and gain a clearer understanding of how time is represented in the digital world.
WebinarDigital Forensics and Incident Response
- 23 Jul 2024
- 13:00 UTC
- Kathryn Hedley
Part 1 - Ctrl+Alt+Comply: NERC CIP in the Cloud - Introduction and Current State
This Webinar series will discuss the challenges presented by applying the NERC Critical Infrastructure Protection (CIP) standards to cloud computing environments. This first webinar in the series of six will dive into the topic from the various stakeholder perspectives and highlight the opportunities and challenges awaiting this sector.
WebinarIndustrial Control Systems Security
- 24 Jul 2024
- 13:00 UTC
- Tim Conway
Scraping the Web for Threat Intelligence Data to Feed Your Machine Learning Algorithms
In the age of AI, obtaining data is crucial for successful data science and model building. Equally important is ensuring we, as security and machine learning engineers and data scientists, have meaningful data to solve our problems.
WebinarDigital Forensics and Incident Response
- 24 Jul 2024
- 18:00 IST
- Nik Alleyne
2024 Government Security Forum
In today's hostile digital landscape, government agencies face a relentless barrage of cyber threats. Furthermore, agencies face a continuing stream of legislative, executive, and oversight recommendations, constantly keeping teams and technologies on their toes. This SANS Solutions Forum equips public sector cybersecurity teams with the essential knowledge to address these challenges and modern threats head-on.
WebinarCyber Defense
- 25 Jul 2024
- 10:00 UTC
- Matt Bromiley, Branko Bokan, Melanie "Kyle" Gingrich + 3 more
Attack and Detect Kubernetes: Aerial Combat Training - Aviata Cloud Solo Flight Challenge Chapter 4
Captain Maverick has helped the Aviata Cloud team build and deploy a Kubernetes infrastructure to manage the applications needed to run the `Airborne io 24` aircraft and its mission of navigating the globe in the most advanced aircraft ever created.
WebinarCloud Security
- 25 Jul 2024
- 10:00 UTC
- Shaun McCullough
The AI-Cybersecurity Convergence: Expert Perspectives from Google DeepMind, Anthropic, and OpenAI
Are you prepared for the evolving threats AI could pose in the cyber landscape?As AI technology rapidly advances, the risks and challenges it introduces to cybersecurity are growing more complex. In this pivotal discussion, Sounil Yu, Co-Founder and Chief AI Safety Officer at Knostic, leads an expert panel featuring top cybersecurity leaders: Vijay Bolina (CISO and Head of Cybersecurity Research at Google DeepMind), Jason Clinton (CISO at Anthropic), and Matt Knight (Head of Security at OpenAI).
WebinarArtificial Intelligence
- 25 Jul 2024
- 15:00 UTC
SANS 2024 Security Awareness Report | Key Findings with Lance Spitzner
The 2024 SANS Security Awareness Report equips you with essential insights to combat top cybersecurity threats and build a strong security culture.
WebinarSecurity Awareness
- 30 Jul 2024
- 11:00 UTC
- Lance Spitzner
Enhanced Vendor Risk Assessments: Maximizing Risk Reduction and Strengthening Vendor Relations - Part 1
SEC547 Mastering Supply Chain Security: A 3-Part Webcast Series. This webcast supports content and knowledge from SEC547: Defending Product Supply Chains.
WebinarCyber Defense
- 30 Jul 2024
- 13:00 UTC
- Tony Turner
A Zero-Trust User Access Model Can Expedite Compliance with New Looming NERC CIP Regulations
The North American Electric Reliability Corporation's Critical Infrastructure Protection (NERC CIP) standards are pivotal in safeguarding the reliability and security of the North American power grid. With the deadline for NERC CIP-003-9 looming in April 2026, asset owners face significant challenges in aligning their cybersecurity measures with these stringent requirements. This presentation will explore challenges and elements for key NERC CIP-003-9 requirements and an example of successful implementation
WebinarIndustrial Control Systems Security
- 30 Jul 2024
- 13:00 UTC
- Jason Dely, Enrique Martinez & Bill Moore
Advanced Python Automation Hands-On Workshop
Are you ready to elevate your Python skills? Join SANS for an exclusive Advanced Python Automation workshop led by SANS Fellow and course author Mark Baggett. In this interactive session, you'll experience the first hour and a half of the course content, packed with practical, hands-on material. Skip the typical introductions and dive straight into advanced automation techniques. Don't miss this opportunity to enhance your Python automation expertise with real-world applications. Register now and take your Python skills to the next level!
WebinarCyber Defense
- 31 Jul 2024
- 10:00 UTC
- Mark Baggett