- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Summit Series
- SANS Partnership Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- List of Resources
- Top 20 List
- Top 25 Programming Errors
- Top 10 Security Trends
- Top 5 Essential Log Reports
- Reading Room
- Webcasts
- WhatWorks
- Newsletters
- RSS Feeds
- Calendar Feeds
- Projects
- Security Policy Project
- Security+ Study Guide
- S.C.O.R.E.
- Awards & Recognitions
- SANS Buyers Guide
- Security Tool Demos
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
Top 25 Papers
Last Updated December 12, 2008
OpenVPN and the SSL VPN Revolution
By: Charlie Hosner
Category: Encryption & VPNs
Posted: August 25, 2004
IOSMap: TCP and UDP Port Scanning on Cisco IOS Platforms
By: Robert VandenBrink
Category: Tools
Posted: November 18, 2008
OS and Application Fingerprinting Techniques
By: Jon Mark Allen
Category: Protocols
System Administration
Tools
Posted: September 27, 2007
A Reverse Proxy Is A Proxy By Any Other Name
By: Art Stricek
Category: Web Servers
Posted: January 10, 2002
Intrusion Detection Likelihood: A Risk-Based Approach
By: Blake Hartstein
Category: Incident Handling
Intrusion Detection
Posted: November 5, 2008
Microsoft Vista Firewall; Dissected
By: Phil Kostenbader & Bob Rudis
Category: Firewalls & Perimeter Protection
Posted: August 9, 2007
.NET Framework Rootkits: Backdoors inside your Framework
By: Erez Metula
Category: Windows .NET
Posted: November 13, 2008
Mining for Malware - There's Gold in Them Thar Proxy Logs!
By: Joe Griffin
Category: Malicious Code
Posted: November 17, 2008
Forensic Analysis of a SQL Server 2005 Database Server
By: Kevvie Fowler
Category: Application/Database Sec
Forensics
Posted: September 28, 2007
Data Carving Concepts
By: Antonio Merola
Category: Forensics
Posted: November 19, 2008
Attack vs. Defense on an Organizational Scale
By: Omar Fink
Category: Hackers
Threats/Vulnerabilities
Posted: December 11, 2007
Detecting and Preventing Rogue Devices on the Network
By: Ibrahim Halil Saruhan
Category: Intrusion Detection
Wireless Access
Posted: August 13, 2007
Detecting and Preventing Anonymous Proxy Usage
By: John Brozycki
Category: Intrusion Detection
Posted: November 6, 2008
Windows Vista: First Steps
By: Johannes Ullrich
Category: Windows Issues
Posted: December 23, 2003
Document Metadata, the Silent Killer...
By: Larry Pesce
Category: Digital Privacy
Posted: December 3, 2008
Skype: A Practical Security Analysis
By: Bert Hayes
Category: VOIP Issues
Posted: October 15, 2008
EVTX and Windows Event Logging
By: Brandon Charter
Category: Logging Technology and Techniques
Posted: November 13, 2008
Check Point firewalls - rulebase cleanup and performance tuning
By: Barry Anderson
Category: Firewalls & Perimeter Protection
Posted: September 5, 2008
Data Loss Prevention
By: Prathaben Kanagasingham
Category: Data Loss Prevention
Posted: September 5, 2008
Fibre Channel Storage Area Networks: An Analysis From A Security Perspective
By: Jose Pico
Category: Backup Strategies
Posted: October 9, 2008
Mobile Device Forensics
By: Andrew Martin
Category: Forensics
Posted: September 5, 2008
Tips for Making Security Intelligence More Useful
By: Mason Pokladnik
Category: Incident Handling
Posted: October 9, 2008
WiFi with BackTrack
By: Antonio Merola
Category: Auditing & Assessment
Posted: December 24, 2007
OS and Application Fingerprinting Techniques
By: Jon Mark Allen
Category: Authentication
Posted: October 22, 2008
Google Desktop Search as an Analysis Tool
By: Chris Poldervaart
Category: Case Studies
Posted: September 11, 2008
By: Charlie Hosner
Category: Encryption & VPNs
Posted: August 25, 2004
IOSMap: TCP and UDP Port Scanning on Cisco IOS Platforms
By: Robert VandenBrink
Category: Tools
Posted: November 18, 2008
OS and Application Fingerprinting Techniques
By: Jon Mark Allen
Category: Protocols
System Administration
Tools
Posted: September 27, 2007
A Reverse Proxy Is A Proxy By Any Other Name
By: Art Stricek
Category: Web Servers
Posted: January 10, 2002
Intrusion Detection Likelihood: A Risk-Based Approach
By: Blake Hartstein
Category: Incident Handling
Intrusion Detection
Posted: November 5, 2008
Microsoft Vista Firewall; Dissected
By: Phil Kostenbader & Bob Rudis
Category: Firewalls & Perimeter Protection
Posted: August 9, 2007
.NET Framework Rootkits: Backdoors inside your Framework
By: Erez Metula
Category: Windows .NET
Posted: November 13, 2008
Mining for Malware - There's Gold in Them Thar Proxy Logs!
By: Joe Griffin
Category: Malicious Code
Posted: November 17, 2008
Forensic Analysis of a SQL Server 2005 Database Server
By: Kevvie Fowler
Category: Application/Database Sec
Forensics
Posted: September 28, 2007
Data Carving Concepts
By: Antonio Merola
Category: Forensics
Posted: November 19, 2008
Attack vs. Defense on an Organizational Scale
By: Omar Fink
Category: Hackers
Threats/Vulnerabilities
Posted: December 11, 2007
Detecting and Preventing Rogue Devices on the Network
By: Ibrahim Halil Saruhan
Category: Intrusion Detection
Wireless Access
Posted: August 13, 2007
Detecting and Preventing Anonymous Proxy Usage
By: John Brozycki
Category: Intrusion Detection
Posted: November 6, 2008
Windows Vista: First Steps
By: Johannes Ullrich
Category: Windows Issues
Posted: December 23, 2003
Document Metadata, the Silent Killer...
By: Larry Pesce
Category: Digital Privacy
Posted: December 3, 2008
Skype: A Practical Security Analysis
By: Bert Hayes
Category: VOIP Issues
Posted: October 15, 2008
EVTX and Windows Event Logging
By: Brandon Charter
Category: Logging Technology and Techniques
Posted: November 13, 2008
Check Point firewalls - rulebase cleanup and performance tuning
By: Barry Anderson
Category: Firewalls & Perimeter Protection
Posted: September 5, 2008
Data Loss Prevention
By: Prathaben Kanagasingham
Category: Data Loss Prevention
Posted: September 5, 2008
Fibre Channel Storage Area Networks: An Analysis From A Security Perspective
By: Jose Pico
Category: Backup Strategies
Posted: October 9, 2008
Mobile Device Forensics
By: Andrew Martin
Category: Forensics
Posted: September 5, 2008
Tips for Making Security Intelligence More Useful
By: Mason Pokladnik
Category: Incident Handling
Posted: October 9, 2008
WiFi with BackTrack
By: Antonio Merola
Category: Auditing & Assessment
Posted: December 24, 2007
OS and Application Fingerprinting Techniques
By: Jon Mark Allen
Category: Authentication
Posted: October 22, 2008
Google Desktop Search as an Analysis Tool
By: Chris Poldervaart
Category: Case Studies
Posted: September 11, 2008
Check Them Out!
This is hands-down, the premiere training opportunity.
- Dan Mather, JICPAC
