| |
|
| |
| |
|
Updated 18th February 2010 |
|
| |
April
Network Investigation for Law Enforcement
6th - 9th April @ Brunei Darulssalam
|
|
|
| This network investigations course is tailored specifically to the needs of law enforcement officers who are investigating cyber crimes. The course will begin by reviewing the common types of cyber crimes, how criminal activities are conducted on the Internet, and the tools and motivations driving the Internet as a medium for criminal activity. The course will investigate how Internet crime is conducted using tools such as Botnets, DDoS attacks, illicit file hosting, underground economy marketplaces, spam, phishing, extortion, and more. The course will also demonstrate how common hacking activity takes place through web application exploits, remote operating system and application exploits, social engineering, and web drive by attacks. The core of the course will be focused on how law enforcement officers can conduct effective investigations using the Internet. The course does not assume prior knowledge of network investigations, and will cover basic topics from email tracing to advanced topics such as network wiretapping and investigation of suspects who mask their identity using multiple proxies. The objective of the course is to give law enforcement officers a full set of tools and knowledge for use in conducting effective network investigations. |
| |
|
May
Network Forensics and Investigations
3rd - 7th May, Cyberjaya, Malaysia |
|
|
| Participants will gain real world knowledge and skills to analyse network traffic, improve network security and reliability, and protect networks from malicious and criminal attacks. Participants will learn techniques to identify suspect traffic pattern, identify a breached host, identify signs of bots running in a network and the techniques to deal with and manage compromised machines. |
|
|
SANS IMPACT Course Preview Session
25th May, Kuala Lumpur |
|
|
The Top 25 Most Dangerous Programming Errors and “Man-in-the-Middle” Attacks
We are honored to be bringing SANS Certified Instructors Dr. Johannes Ulrich and Bryce Galbraith to Malaysia on Tuesday, May 25 where they will cover two fascinating topics in a presentation to selected members of the local Application and Information Security Community.
This event is free of charge. Interested participants are required to RSVP to AsiaPacific@sans.org before May 14, 2010. Attendance is limited to 25 and seats will be awarded on a first-reserved basis.
The presentations at this session draw upon content from our upcoming classes this July at SANS IMPACT: Malaysia 2010. Details can be found at the following link:
To register, please visit http://www.sans.org/impact-malaysia-2010/ |
|
|
IPv6 Essentials
26th May 2010, IMPACT Global HQ, Cyberjaya, Malaysia |
|
|
Learning about IPv6 is essential to securing your network. This course is designed not just for implementers of IPv6, but also for those who just need to learn how to detect IPv6 and defend against threats unintentional IPv6 use may bring.
IPv6 is currently being implemented at a rapid pace in Asia in response to the exhaustion of IPv4 address space, which is most urgently felt in rapidly growing networks in China and India. Even if you do not feel the same urgency of IP address exhaustion, you may have to connect to these IPv6 resources as they become more and more important to global commerce. This course will introduce network administrators and security professionals to the basic concepts of IPv6. While it is an introduction to IPv6, it is not an introduction to networking concepts. |
| |
|
June
SANS Security Essentials Bootcamp Style
28th June - 3rd July, IMPACT Global HQ, Cyberjaya, Malaysia |
|
|
Instructor: Eric Cole, PhD
6-Day Course
| • |
9:00am-5:00pm |
| • |
46 CPE Credits |
| • |
Laptop Required |
This session has a Bootcamp (Attendance required) 5:15pm-7:00pm (Days 1-5)
Maximize your training time and turbo-charge your career in security by learning the full SANS Security Essentials curriculum needed to qualify for the GSEC certification. In this course you will learn the language and underlying theory of computer security. At the same time you will learn the essential, up-to-the-minute knowledge and skills required for effective performance if you are given the responsibility for securing systems and/or organizations.
Who Should Attend
| • |
Security professionals who want to fill the gaps in their understanding of technical information security |
| • |
Network engineers wanting to enter the field of security |
| • |
Security engineers, admins, managers, and others wanting a more detailed understanding of the technical components of security |
| • |
Anyone new to information security with some background in information systems and networking |
| • |
Individuals with operational responsibility for a firewall, VPN, or Internet-facing device |
|
To register, please visit http://www.sans.org/impact-malaysia-2010/ |
| |
SANS Hacker Techniques, Exploits & Incident Handling
28th June - 3rd July, IMPACT Global HQ, Cyberjaya, Malaysia |
|
|
Instructor: John Strand
6-Day Course
| • |
9:00am-5:00pm |
| • |
36 CPE Credits |
| • |
Laptop Required |
If your organization has an Internet connection or a disgruntled employee (and whose doesn’t!), your computer systems will get attacked. From the five, ten, or even one hundred daily probes against your Internet infrastructure to the malicious insider slowly creeping through your most vital information assets to the spyware your otherwise wholesome users inadvertently downloaded, attackers are targeting your systems with increasing viciousness and stealth.
By helping you understand attackers’ tactics and strategies in detail, giving you hands-on experience in finding vulnerabilities and discovering intrusions, and equipping you with a comprehensive incident handling plan, the in-depth information helps you turn the tables on computer attackers. This course addresses the latest cutting edge insidious attack vectors, the ‘oldie-but-goodie’ attacks that are still so prevalent, and everything in between. Instead of merely teaching a few hack attack tricks, this course includes a time-tested, step-by-step process for responding to computer incidents; a detailed description of how attackers undermine systems so you can prepare, detect, and respond to them; and a hands-on workshop for discovering holes before the bad guys do. This workshop also includes the unique SANS Capture-the-Flag event on the last day where you will apply your skills developed throughout the session to match wits with your fellow students and instructor in a fun and engaging learning environment. You’ll get to attack the systems in our lab and capture the flags to help make the lessons from the whole week more concrete. Additionally, the course explores the legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.
This challenging course is particularly well suited to individuals who lead or are a part of an incident handling team. Furthermore, general security practitioners, system administrators, and security architects will benefit by understanding how to design, build, and operate their systems to prevent, detect, and respond to attacks.
Who Should Attend
| • |
Incident handlers |
| • |
Leaders of incident handling teams |
| • |
System administrators who are on the front lines defending their systems and responding to attacks |
| • |
Other security personnel who are first responders when systems come under attack |
|
To register, please visit http://www.sans.org/impact-malaysia-2010/ |
| |
July
SANS Defending Web Applications Security Essentials
5th - 10th July, IMPACT Global HQ, Cyberjaya, Malaysia. |
|
|
Instructor: Jason Lam
6-Day Course
| • |
9:00am-5:00pm |
| • |
36 CPE Credits |
| • |
Laptop Required |
Traditional network defenses such as firewalls fail to secure Web applications, which have to be available to large user communities. The amount and importance of data entrusted to Web applications is growing, and defenders need to learn how to secure it. DEV522 covers the OWASP Top 10 and will help you to better understand Web application vulnerabilities, thus enabling you to properly defend your organization’s Web assets.
Mitigation strategies from an infrastructure, architecture, and coding perspective will be discussed alongside real-world implementations that really work. The testing aspect of vulnerabilities will also be covered so you can ensure your application is tested for the vulnerabilities discussed in class.
The class goes beyond classic Web applications and includes coverage of Web 2.0 technologies like AJAX and Web services. To maximize the benefit for a wider range of audiences, the discussions in this course will be programming language agnostic. Focus will be maintained on security strategies rather than coding level implementation.
Who Should Attend
| • |
Application developers |
| • |
Application security analysts or managers |
| • |
Application architects |
| • |
Penetration testers who are interested to learn about defense strategies |
| • |
Security professionals who are interested in learning about application security |
| • |
Auditors who need to understand defensive mechanisms in applications |
|
To register, please visit http://www.sans.org/impact-malaysia-2010/ |
| |
October
Malware Analysis and Reverse Engineering
18th - 22nd October, IMPACT Global HQ, Cyberjaya, Malaysia |
|
|
| Determining the functionality of malware is critical both during the incident response process and to better understand where threats on the Internet originate from. The course will examine malware in both static and runtime environments, and from several perspectives. It will take into account the viewpoint of an incident responder attempting to determine what malicious activities the malware has conducted in order to mitigate further malicious activity and remove the malware from an infected system. The course will also consider the perspective of a CSIRT or security team that is investigating malware to identify where it is calling back to and who is controlling it, perhaps as part of a post-mortem investigation. Finally, it will account for a network defender who is attempting to create signatures that will allow for identification of the malware on other compromised systems. Both static and runtime malware analysis techniques will be covered, and reverse engineering tools such as IDA Pro and Ollydbg will be covered.
|
| |
|
November
Network Forensics and Investigations
22nd - 26th November, IMPACT Global HQ, Cyberjaya, Malaysia |
|
|
| Participants will gain real world knowledge and skills to analyse network traffic, improve network security and reliability, and protect networks from malicious and criminal attacks. Participants will learn techniques to identify suspect traffic pattern, identify a breached host, identify signs of bots running in a network and the techniques to deal with and manage compromised machines. |
| |
|
December
Securing ISP Systems and Networks
13th - 17th December, IMPACT Global HQ, Cyberjaya, Malaysia |
|
|
| This course will cover ISP best practices developed over years of working with ISPs globally to better manage and secure their network systems. The course will be focused on methods of helping ISPs run cleaner and more cost-effective networks to help ISPs provide better service to their customers. Topics such as secure router configuration, routing best practices, BGP, DNS and DNSSEC, botnet discovery and mitigation, DDoS detection and mitigation, netflow analysis, spam detection, anti-phishing techniques will be covered in depth. This course is taught in a vendor neutral environment, and where possible multiple vendors’ techniques are covered to accomplish the same task. |
| |
|
|
|
|
| |
|
|
| |
Note: Course dates are subjected to change. To request for a course that is not scheduled in the Training Calendar, please send an email to training[at]impact-alliance.org |
|
| |
|
|
| |
|
