 |
||
|
|
 |
|
|
||
|
|
|
|
Rochester, NY
SANS GIAC SEC504:
Hacker Techniques, Exploits & Incident Handling (GCIH)July 7- 12, 2008
Tuition Fee: $3015 ($2,925 before May 28) Register Now
Let's face it. If your organization is connected to the Internet or has any disgruntled employees, your computer systems will get attacked. From the five, ten, or even one hundred daily probes against your Internet infrastructure to the malicious insider slowly creeping through your most vital information assets, attackers are targeting your systems with increasing viciousness and stealth. By helping you understand attackers' tactics and strategies in detail, giving you hands-on experience in finding vulnerabilities and discovering intrusions, and equipping you with a comprehensive incident handling plan, the in-depth information in this course helps you turn the tables on computer attackers. This course addresses the latest cutting-edge insidious attack vectors and the "oldie-but-goodie" attacks that are still so prevalent, and everything in between.
Instead of merely teaching a few hack attack tricks, this course includes a time-tested, step-by-step process for responding to computer incidents, a detailed description of how attackers undermine systems so you can prepare, detect, and respond to them, and a hands-on workshop for discovering holes before the bad guys do. Additionally, the course explores the legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.
This challenging course is particularly well suited to individuals who lead or are a part of an incident handling team. Furthermore, general security practitioners, system administrators, and security architects will benefit by understanding how to design, build, and operate their systems to prevent, detect, and respond to attacks.
This track can be used to prepare for the GIAC Certified Incident Handler (GCIH) certification.
Who Should Attend
- Members and leaders of incident handling teams
- System administrators and security personnel
- Software development personnel who need to understand how to create secure code
- Ethical hackers/penetration testers who want to understand the concepts underlying their testing regimen
A Sampling of Topics
- The step-by-step approach used by many computer attackers
- The latest computer attack vectors and how you can stop them
- Proactive and reactive defenses for each stage of a computer attack
- Hands-on workshop addressing scanning for, exploiting and defending systems
- Strategies and tools for detecting each type of attack
- Attacks and defenses for Windows, Unix, switches, routers and other systems
- Application-level vulnerabilities, attacks and defenses
- Developing an incident handling process and preparing a team for battle
- Legal issues in incident handling
- Recovering from computer attacks and restoring systems for business
Get started now and save!
- This Special Offer price is $2,925 before May 28, 2008
Who will teach the class?
Ralph Durkee: Performing a wide variety of consulting and training projects including software development, systems and networking security throughout his 25+ year career, Ralph is the president and founder of Durkee Consulting, since 1996. His specialty focuses on Internet security consulting and secure system and web application development and Payment Card Industry (PCI) consulting. He also wrote a major portion of the Web Application Security training material for the SANS LAMP (Linux Apache MySql PHP) course. Ralph is the editor for the Center for Internet Security's DNS BIND benchmark, as well as several others. Ralph is a seasoned security consultant and trainer and holds GIAC certifications in GSEC since 2000 then GCIH since 2001 as well as the GSNA and CISSP.
For additional information or registration instructions contact:
Ralph Durkee: info@rd1.net or Scott Weil: sweil@sans.org
For a Full Course Outline and Registration: http://www.sans.org/
 |
 |
Durkee Consulting, Inc.
|