InfoSecPodcast.com » Education

Taking SANS FOR610 malware forensics class

Chris Harrington — Tue, 17 Jan 2012 00:23:16 +0000

The class started tonight via their vLive platform. It looks like a very interesting course. I will post comments as I go.

https://www.sans.org/security-training/reverse-engineering-malware-malware-analysis-tools-techniques-54-mid

–Chris

Giving a presentation on APT tonight in Manchester, NH

Chris Harrington — Thu, 21 Apr 2011 13:15:35 +0000

At the last meeting of the New Hampshire chapter of ISSA the subject turned to Advanced Threats (APT, SMT, etc). This was driven mostly by the RSA announcement of their breach that happened just prior to the meeting. I was asked to put something together to share at the next meeting. Most of the presentation focuses on what kinds of things you should be paying attention to on your hosts and networks, the tools and infrastructure that will help in detection and some tips on what organizations can do to make it harder for the bad guys. This information is out there in public sources but is difficult to piece together.

You do not have to be a member of ISSA International or the NH chapter to attend. It’s a good opportunity to network with your peers in other area organizations. Tonight’s meeting is at the Manchester Public Library at 405 Pins Street. Directions can be found here

–Chris

New blog theme

Chris Harrington — Thu, 26 Jun 2008 15:06:09 +0000

I’ve been working on a new theme for the blog. Please let me know what you think of the new theme!

Thanks!

–Chris

CCIE, Step 1 complete.

Chris Harrington — Thu, 08 Nov 2007 02:08:55 +0000

I passed my Cisco CCNA exam yesterday with a score of 981. Normally I would gloat about something like that but my friend (and partner in crime at GreenPages) scored a perfect 1000.

Showoff!! Congrats Steve.

–Chris

Technorati Tags: Cisco, CCNA

Any security CCIE’s out there?

Chris Harrington — Tue, 30 Oct 2007 17:10:11 +0000

It has been decided (jointly) that I am going to pursue the Cisco CCIE (security) certification. I still have reservations given the amount of work / practice / studying involved. I would love to hear from anyone who is a CCIE or is attempting it and get your thoughts on the process.

This should be interesting…..

–Chris

Technorati Tags: Cisco, CCIE

Should I renew my CISSP?

Chris Harrington — Tue, 10 Jul 2007 13:57:35 +0000

In my inbox today is the reminder from ISC2 that my CISSP certification is up for renewal this fall. I haven’t been very diligent about tracking my credits so I have some work to do there. I found myself questioning whether or not I should spend the $105 and renew it. Thinking back over the 8 years since I passed the exam, I can’t remember an instance where this certification has helped me. Maybe it has along the way..I just cant think of when. It has never come up specifically during a job interview or similar discussions. With all of the boot camps / study guides out there I can’t help feel that this cert is being watered down a bit. I’ve never been that big into certifications anyway, CISSP is the only one I have.

I just don’t know. Given my career path as of late (a couple of CTO gigs), I’m just not sure it’s worth it. Then again, I would hate to have to sit down and memorize the difference between a wet pipe and dry pipe sprinkler system or how many rounds in an AES CBC cipher all over again.

Thoughts?

–Chris

Technorati Tags: cissp, certification, isc2, security

Security Survey

Chris Harrington — Mon, 02 Jul 2007 14:01:58 +0000

Fellow ISSA New Hampshire member Ian is writing a paper for his SANS GCIH Honors program. He has put together a survey to collect information for that paper. Please take a couple minutes and do him the favor of completing the survey. http://headwallsecurity.com/SecuritySurvey.htm

Thanks for your help.

–Chris

Security articles in Sys Admin magazine

Chris Harrington — Thu, 27 Jul 2006 20:22:21 +0000

I grabbed a copy of Sys Admin magazine from the bookstore today. I guess my subscription ran out somehow. Anyway, this issue is full of great security articles which include:

Tuning Snort by Richard Bejtlich of TaoSecurity fame
3 free tools to detect spyware / malware at the perimeter by Matt Jonkman, founder of Bleedingsnort.com
Extrusion Detection with Aanval and Bleeding Snort by Russ McRee
Web Server vuln assessments with Nikto / NiktoRAT by Brian Reilly

Plus a couple more articles. You should pick it up or better yet subscribe.

–Chris

Technorati Tags: Security, SysAdmin, Snort, Spyware, Articles