Publications
I have published several practical papers, as well as a book entitled “Hands-On Information Security Lab Manual”, now in its second edition. I have a chapter in the book “Readings and Cases in the Management of Information Security” about incident response. My courseware writing with the SANS Institute is their property, and only available by purchasing/taking a course through them.
Securing the SOHO: A Discussion with a Tutorial of Tiny Personal Firewall 2.0
Implementing an Antivirus system as part of an overall ISO 17799 ISMS
SANS Analyst Program: The Log Management Industry 2005- An Untapped Market
(with Stephen Northcutt, Jerry Shenk, and Leonard Ong)
SANS Analyst Program: The Log Management Industry 2006- An Untapped Market
(with Stephen Northcutt, Jerry Shenk, and Leonard Ong)
SANS Analyst Program: Penetration Testing: Assessing Your Overall Security Before Attackers Do
(with Stephen Northcutt, Jerry Shenk, Tim Rosenberg, Raul Siles, and Steve Mancini)
SANS Analyst Program: Using Security Information Management Systems for PCI Compliance
SANS Analyst Program: Regulations and Standards: Where Encryption Applies
SANS Analyst Program: Leveraging Event and Log Data for Security and Compliance
SANS Analyst Program: Monitoring Security and Performance on Converged Traffic Networks
SANS Analyst Program: Real-time Adaptive Security (Sourcefire)
Article: Simple ways to test Web applications for security (SANS Advisor)
Article: Using Group Policy to configure Windows XP Firewall (SANS Advisor)
Article: Detecting Spyware in HTTP Proxy Logs (SANS Advisor)
Books
Hands-On Information Security Lab Manual
Readings and Cases in the Management of Information Security
(Reading 3: Managing Incident Response)
Courses
Combating Spyware
Recent Comments