Resources

Version 1.0

Current Version
Archives

Internet Storm Center/DShield Resources

Internet Storm Center/DShield - (DShield/ISC) - with its data. It will be available for use by master's degree students of SANS Technology Institute as follows: The student must submit a one page proposal to jullrich@sans.org outlining how the student wishes to use it. If the request is approved, the student will be given ssh access to the DShield data via its research mirror at the University of Wisconsin, or the student will be given a vpn account to access the malware lab.

Library Resources

SANS Institute's programs demand remotely accessible library resources because (1) they are designed for professionals who are working full-time around the world and who are not able to visit a traditional library, and (2) they are focused on technology that has a very rapid technological change cycle that is well represented by online media, but not in books.

Therefore, to meet the needs of the students, SANS Technology Institute will provide its students access to a comprehensive online library of information security resources.

Malware Lab Resources

Malware Lab from the SANS Internet Storm Center Handlers and Malware Group. It will be available for use by master's degree students of SANS Technology Institute as follows: The student must submit a one page proposal to jullrich@sans.org outlining how the student wishes to use it. If the request is approved, the student will be given a vpn account to access the malware lab.

SANS Institute Learning Resource Center

SANS Institute supplies a learning resource center through the Information and Computer Security Resources, which is a compilation of thousands of original research papers, security policies, security notes, along with a wealth of unique network security data.

  1. The SANS Institute Information Security Reading Room containing more than 1,500 original research studies, not available from any other source, in 75 categories relevant to the study of information security.

    The papers in the SANS Institute Reading Room were prepared by information security professionals to meet the requirements to earn SANS GIAC (Global Information Assurance Certification) Security Essentials certifications. On average, each of the papers reflects 30 to 40 hours of original research.

  2. The SANS Institute Security Policy Collection contains model security policies developed by major corporations and government agencies. They serve as guides and templates for security managers who need to understand and create effective security policies. At the time this was written, the Policy collection contained 28 policies. The collection grows as new security issues (such as wireless) arise and policy templates are needed.

  3. The SANS Security News Collection contains brief summaries of each week's 20 most important security news stories published in newspapers and magazines around the world. The collection provides a search capability that enables students and researchers to quickly find important stories that may be relevant to their research activities. In addition to providing a summary of the story, many entries in the collection include expert assessments and counter arguments from a half dozen of the most respected experts in the security field. The experts include Howard Schmidt, Dr. Eugene Schultz, founder of CIAC, John Pescatore, the top security analyst with Gartner, and several others.

  4. The largest glossary of security terms available on the Internet was developed jointly by the SANS Institute and the National Security Agency. It provides authoritative definitions of many of the specialized terms students will encounter.

  5. The SANS Institute Collection of Frequently Asked Questions about Intrusion Detection contains 118 authoritative discussions of the primary topics that arise when planning and implementing intrusion detection technologies.

  6. The SANS Internet Storm Center Archives contains contemporaneous analyses of new attacks that are discovered on the Internet. Internet Storm Center is the first site most government and commercial security officers visit after learning of a new attack because experts come together at that site to share what they have learned about the damage being done by the new attack and what can be done to block the attack. The archives form an extraordinary research asset because of the depth of the analysis and the currency of the topics covered. Internet Storm Center archives also provide SANS Institute students with access to raw data, summaries, and query facilities to analyze more than 12 billion malicious Internet traffic records recorded over the past 12 months. This is a rich data source for advanced security research projects looking at attack patterns and how fast worms spread through the Internet.