Machine Learning: Practical Applications for Cyber Security

Presented and recorded as a SANS Webcast on Thursday, August 3rd, 2017, with Chris Pace from Recorded Future.

The webinar is available here (registration required): https://www.sans.org/webcasts/105480 

Abstract: Each day, exponentially more data and computing power becomes available. We’re able to task machines to learn and understand more than ever before and, when combined with human analysis, this process can dramatically reduce laborious tasks. However, even with this surge in applicability, machine learning is still often considered a technology of the future.

Join this webcast to:

  • Understand why machine learning is gaining prominence and how it will impact the future.
  • Learn how you can take machine beyond simple automation and orchestration.
  • Gain insight into how machines can analyze data to produce threat intelligence.
  • Examine real-world use cases of how machine learning can drive practical applications in your organization.

Teaching Community SANS Security 503: Intrusion Detection In-Depth

I’m glad to announce that I will be teaching Community SANS Security 503: Intrusion Detection In-Depth at Banbury, Oxfordshire (UK). This 6-day course will run from Monday, February 15, 2010 through Saturday, February 20, 2010.

If you haven’t heard of Community SANS courses before, I encourage you to have a look at this new format (new outside the US, where it’s been running for years). This is a great way of bringing the popular SANS courses to your local security community at a reasonable cost, especially for those that can’t attend the major events.  It’s worth mentioning that unlike the SANS Mentor  sessions, these are delivered over a six-day period, just like it is at a larger SANS event, including the full set of books and access to audio files. They are just delivered in your own community, in a small classroom setting and at a discounted cost for tuition and travel expenses.

I’ve already described my experience with SANS, both as student and facilitator, so I won’t go over that again. Also, you can find a further detailed description of the Security 503 track on SANS website, an outstanding course that I’ve already described as the “most valuable course I’ve ever taken”. However, I want you to listen to Mike Poor, instructor at the SANS Institute and co-author of this course (along with Judy Novak and Guy Bruneau), describing it on YouTube. Mike Poor is both an amazing professional and a great guy that I had the opportunity to meet at SANS Sydney in 2008, when I took his Penetration Testing class. As Mike would say, this IDS course is simply “awesome”!

Links to overcome the post-holiday syndrome

September came quickly and holidays are gone. Well, at least for me and for most of the people that live in this part of the world. If you happen to be one of those that survived the holiday season -and all its hassles- without even approaching your laptop, blackberry, iPhone, PDA or any other kind of “always-on” Internet device… you are either a liar or a hero.

Whatever you did, and despite the amount of money you spent, one thing is for sure: if you are reading this it’s safe to assume that you are still interested in reading about good infosec stuff, aren’t you?

Keep reading then and have a look at the following links containing a few interesting security tools, new forensic challenges and even a new Multi-Boot Security Live DVD:

  • DFRWS 2008 Rodeo (forensic challenge): The 8th annual Digital Forensic Research Conference was held from August 11 to 13, 2008 in Baltimore, MD. A key element of this conference is the “forensic rodeo”, a challenge where conference attendees form teams to solve a digital forensic problem. The DRFWS has made the materials for the 2008 Forensic Rodeo available on their website for educational purposes and to support further research in memory analysis and file carving. The scenario description and the image files can be downloaded http://www.dfrws.org/2008/rodeo.shtml Continue reading “Links to overcome the post-holiday syndrome”