25Mar/090
Anatomy of an Attack: From Incident to Expedient Resolution
For the first session of the morning on the last day of the TRISC 2009 Conference, I decided to attend the "Anatomy of an Attack: From Incident to Expedient Resolution" talk by Chris Smithee, a Systems Engineer at Lancope. He talked about the different types of attacks that you see on your network and how using FLOW data can be used to monitor and eliminate some of these types of threats. My notes from the session are below:
Tagged as: anatomy, attack, data, flow, incident, resolution, tools
Continue reading
Recent Posts
- Combining Tools for Ultimate Malware Threat Intelligence
- Lessons Learned from Participating in my First CTF
- Malware is Using TOR to Bypass Your Domain Blacklists
- Getting the Real Administrator Access to Time Warner RoadRunner’s Ubee Cable Modem
- Are Invisible Barbarians At Your Gates?
- Visual Correlelation of Security Events
- Roadrunner Extreme Broadband Beta
Recent Comments
- Alex.V on A XSS Vulnerability in Almost Every PHP Form I’ve Ever Written
- Malware is Using TOR to Bypass Your Domain Blacklists | Blazing Blade's Blog on Malware is Using TOR to Bypass Your Domain Blacklists
- R&D | Agile Adoption and Transformation – Linkapaloza on Defining Agile Operations and DevOps
- protect your web browsing… | Looking California, feeling Minnesota on New 0Day Browser Exploit: Clickjacking – OWASP AppSec NYC 2008
- What is DevOps? - dev2ops on Agile Operations
- Josh on A XSS Vulnerability in Almost Every PHP Form I’ve Ever Written
- Punjabi Chowk on A XSS Vulnerability in Almost Every PHP Form I’ve Ever Written
- Richard on A XSS Vulnerability in Almost Every PHP Form I’ve Ever Written
- hot deal on Microsoft Azure for Dummies – or for Smarties?
- Moving extricate.org to Amazon EC2 – extricate.org on Amazon EC2 EBS Instances and Ephemeral Storage
devops
- Agile Operations Blog
- Agile Testing
- Agile Web Operations
- dev2ops – Web Ops at Scale
- Kitchen Soap, A WebOps Blog
- The Madstop
- The Open Minded Enterprise
- The Simple Logic
Links
- Amazon Web Services Blog
- Gilligan on Data
- National Instruments Home
- Server Fault
- Steve Souders’ Blog
- Transparent Uptime blog
Security
Tags
agile
amazon
analysis
application
appsec
attack
aws
best
browser
cloud
Cloud Computing
code
Conferences
data
devops
ec2
firewall
google
hansen
internet
Management
network
Operations
owasp
PCI
penetration
performance
practices
project
rsnake
SaaS
secure
Security
strategies
testing
velocity
velocity08
velocityconf
velocityconf08
velocityconf09
Virtualization
vulnerability
waf
web
xss
Categories
- Advertising (2)
- Application Performance Management (14)
- Automation (4)
- Browsers (4)
- Cloud Computing (9)
- Conferences (61)
- BSides Austin 2013 (1)
- OWASP AppSec DC 2009 (16)
- OWASP AppSec NYC 2008 (18)
- TRISC 2009 (8)
- Velocity 2008 (8)
- Velocity 2009 (8)
- Content Management (2)
- Featured (3)
- Green Computing (1)
- High Availability (1)
- Log Management (2)
- Management (2)
- Monitoring (2)
- Networking (8)
- Operating Systems (1)
- Operations (9)
- Popular (2)
- SaaS (2)
- Sarcasm (1)
- Search (1)
- Security (59)
- Capture the Flag (1)
- Cloud Computing (4)
- Compliance (1)
- Malware (2)
- Metrics (2)
- PCI (2)
- Phishing (1)
- Physical (1)
- Virtualization (3)
- Web Application Security (30)
- Dynamic Analysis (1)
- Static Analysis (1)
- Wireless Networks (4)
- Service-Oriented Architecture (1)
- Software and Tools (11)
- Training (2)
- Uncategorized (1)
- Virtualization (4)