Highlights of Recent Research

In addition to pursuing class and lab exercises, SANS Master's program candidates are always conducting research. Here are some highlights of their recent findings. You can follow the links in each of the titles to find a complete copy of their research paper, and you can visit the SANS Reading room to view these and other student's research results.

Security Systems Engineering Approach in Evaluating Commercial and Open Source Software Products
By Jesus Abelarde
January 29, 2016

Network Forensics and HTTP/2
By Stefan Winkel
January 18, 2016

There's No Going it Alone: Disrupting Well Organized Cyber Crime
By John Garris
November 23, 2015

Web Application File Upload Vulnerabilities
By Matthew Koch
December 7, 2015

Compliant but not Secure: Why PCI-Certified Companies Are Being Breached
By Christian Moldes
December 9, 2015

A Network Analysis of a Web Server Compromise
By Kiel Wadner
September 8, 2015

Coding For Incident Response: Solving the Language Dilemma
By Shelly Giesbrecht
July 28, 2015

Forensic Timeline Analysis using Wireshark GIAC (GCFA) Gold Certification
By David Fletcher
August 10, 2015

Accessing the inaccessible: Incident investigation in a world of embedded devices
By Eric Jodoin
June 24, 2015

Breaking the Ice: Gaining Initial Access
By Phillip Bosco
August 28, 2015

Honeytokens and honeypots for web ID and IH
By Rich Graves
May 14, 2015