SANS Technology Institute: Master of Information Security Student Presentations

SANS Technology Institute - The most advanced technical hands on security training on the planet and a master's in information security degree program. Apply today!

Student Presentations

Students seeking a Master of Science in Information Security must give public presentations based on their research. Student presentations are posted here as a resource for the community.

2010

The Afterglow Affect and Peer 2 Peer Networks
- View Presentation with Notes (258KB)
- Jay Radcliffe
- June 2010

SIEM Based Intrusion Detection
- View Presentation with Notes (1.4MB)
- Jim Beechey
- March 2010

2009

Making Your SIEM Work for You
- View Presentation with Notes (676KB)
- John Jarocki
- December 2009

Investigative Trees - Converting Attack Trees into Guides for Incident Response
- View Presentation with Notes (224KB)
- Rodney Caudle
- December 2009

Detecting BitTorrent Using Snort
- View Presentation (191KB)
- View Presentation with Notes (2.2MB)
- Richard Wanner
- December 2009

Intrusion Detection & Response: Leveraging Next Generation Firewalls
- View Presentation (602KB)
- Ahmed Abdel-Aziz
- December 2009

How is Your Company Positioned to Deal with Law Enforcement?
- View Presentation (188KB)
- Tim Proffitt
- September 2009

How to Make Browsers Safer Using Virtualization
- View Presentation (137KB)
- Seth Misenar
- September 2009

IOSMap: TCP and UDP Port Scanning on Cisco IOS Platforms
- View Presentation (906KB)
- Rob VandenBrink
- June 2009

Writing Nessus Compliance Checks for Mac OS X 10.5
- View Presentation (2.7MB)
- Rick D. Smith
- June 2009

Detecting Anonymous Proxy Usage
- View Presentation (296KB)
- John Brozycki
- March 2009

Achievements and Pitfalls of Creating and Maintaining Vulnerability Assessment Programs
- View Presentation with Notes (579KB)
- Tim Proffitt
- March 2009

2008

Metaspolit Payloads and Antivirus
- View PPT Presentation (312KB)
- Mark Baggett
- December 2008

Security Awareness Training Using an Actual Incident
- View Presentation PDF (2MB)
- Russell Meyer
- August 2008

Finding Success with a SIM: Uncovering What You Need to Analyze
- View Presentation PDF (194KB)
- Jim Voorhees
- July 2008

Creating a remote command shell using default windows command line tools
- View Presentation with Notes PDF (512KB)
- Kevin Bong
- July 2008

Log Analyzer for Dummies
- View Presentation PDF (92KB)
- Emilio Valente
- May 2008

Auditing a Web Application
- View Presentation with Notes PDF (256KB)
- Brad Ruppert
- May 2008

Genetic Regular Expressions: A New Method for Detecting and Blocking Spam
- View Presentation with Notes PDF (288KB)
- Eric Conrad
- April 2008

Log Management SIMetry: A Step by Step Guide to Selecting the Correct Solution
- View Presentation PDF (248KB)
-Jim Beechey
-April 2008

Creating Actionable Information from Intrusion Detection System (IDS) Alerts
- View Presentation PDF (2.9MB)
IDS Report for Monday 9-26-05
- View Report PDF (57KB)
Example Summary Matrix of the Internal IDS Sensor Alerts for August 2004
- View Matrix PDF (38KB)
Site Specific Report for HQ - Selected Alerts for March 2005
- View Report PDF (55KB)
- Russell Meyer
- April 2008

Intrusion Detection: Catch the Bad Guys before They Compromise Your Network
- View PPT Presentation (1.4MB)
- Manuel Humberto Santander Pelaez
- April 2008

2007

Computer Forensics: From Programming Error to Antiforensics Techniques: Lessons Learned
- Manuel Humberto Santander Pelaez
- December 2007
View Presentation PDF (868KB)

Heap 'Off By 1' Overflow Illustrated
- Eric Conrad
- October 2007
View Presentation PDF (828KB)
View Presentation with Notes PDF (652KB)

Overcoming Patch Management Pitfalls - Brad Ruppert
- September 2007
View Presentation (3.5MB)
View Presentation with Notes (3MB)

WMF (Windows Metafile Format) Vulnerability - Jim Voorhees
- September 2007
View Presentation (48KB)
View Presentation with Notes (68KB)

Assumptions in Intrusion Analysis: Gap Analysis
- Rodney Caudle
- July 2007
View Presentation (222KB)
View Presentation with Notes (164KB)

Web Presence Monitoring Using Perl
- Kevin Bong
- July 2007
View Presentation (248KB)

VPNSCAN: Extending the Audit and Compliance Perimeter
- Rob VandenBrink
- July 2007
View Presentation (100KB)
View Presentation with Notes (112KB)

MRTG (Multi Router Traffic Grapher) used for Basic Server Monitoring
- T. Brian Granier
- April 2007
View Presentation (260KB)
View Presentation with Notes (348KB)

2006

Cyberlaw: Honeypot Edition
- Jay Radcliffe
- October 2006
View Presentation (348KB)

The Spam/Anti-Spam Battlefield
- T. Brian Granier
- October 2006
View Presentation (468KB)
View Presentation with Notes (1.1MB)

Phish Feeding: An Active Response to Phishing Campaigns
- John Brozycki
- October 2006
View Presentation (616KB)
View Report (332KB)

Reverse Shells Enable Attackers To Operate From Your Network
- Richard Hammer
- August 2006
View Presentation (389KB)

Inside-Out Firewall Vulnerability Revisited
- Richard Hammer
- May 2006
View Presentation (416KB)

This work is licensed under a Creative Commons Attribution-NoDerivs 3.0 License.

“SANS provides top instructors; that is what separates SANS from all other learning opportunities.”
Todd Greenlaw, Telus

The SANS Technology Institute

SANS Technology Institute - The most advanced technical hands on security training on the planet and a master's in information security degree program. Apply today!

Student Presentations

2010

2009

2008

2007

2006

“SANS provides top instructors; that is what separates SANS from all other learning opportunities.” Todd Greenlaw, Telus

The SANS Technology Institute

SANS Technology Institute - The most advanced technical hands on security training on the planet and a master's in information security degree program. Apply today!

Student Presentations

2010

2009

2008

2007

2006

“SANS provides top instructors; that is what separates SANS from all other learning opportunities.”
Todd Greenlaw, Telus