Fwd: SANS Participation & Training Update - Region - Europe/UK

>Hello,
>
>I'm Stephen Northcutt, if you get this email it is because SANS thinks
>you live in Europe/UK and this note is targeted to your area. Now on to the 
>information.
>
>Special Training Opportunity: Windows 2002 Gold Standard Hands-On
>Barcelona, Spain - September 27, 2002
>
>The Gold Standard for Win2K security is the most important advance
>in security this year. The US National Security Agency study found
>that more than 85% of successful system compromises would have been
>blocked had the owners been using the Gold Standard, which was jointly
>developed by the Center for Internet Security, NSA, DISA, NIST and GSA.
>I believe this has the potential to become an international standard,
>this course has sold out in the US and Australia. We estimate we
>need to train 150,000 men and women worldwide to apply and audit the
>standard if this is going to become the industry low water mark of
>due diligence.
>
>In order to help train the 150,000 professionals needed to apply the
>standard, we are teaching this special Hands-On course across the
>world. Sadly, Europe is under-represented. It is critically important
>that people from Europe take the course, certify, and become teachers
>or you will be left behind. The course is without any fluff -- we will
>teach you the standard in only one day out of the office. For this
>to be possible, we expect that you are already familiar with Windows
>2000 and will download and install a few tools prior to coming to
>class. Full details on the tools needed and the course description
>can be found at http://www.sans.org/Win2KworldTour/Win2K.php
>
>Courses available in Europe include:
>Barcelona, Spain - September 27, 2002
>
>
>Here is the first of a new series of special selected papers from the
>Information Security Reading Room. The papers featured in these updates
>have been hand picked by GIAC Authorized graders to provide you with
>free quality information with no need to register. Only the highest
>quality papers are considered for this series, I hope you enjoy them!
>
>Update Series Paper
>Title: The Hping2 Idle Host Scan
>By:  Erik Kamerling
>
>This paper covers the basic concepts behind the intelligence gathering
>method known as Idle Host Scanning. For visualization purposes,
>a parallel is drawn between Idle Host Scanning and the scientific
>method known as Doppler Planet Detection. The document then illustrates
>how an Idle Host Scan is accomplished via unconventional use of the
>predictable characteristics of the TCP handshake. It then proceeds to
>introduce the reader to Hping2, a packet manipulation program written
>to exploit this particular anomaly of TCP.
>
>Through sample Hping2 console output, this student practical
>demonstrates what a successful as well as an unsuccessful Hping2
>scan looks like from the attacker's perspective. The consequences
>and impact of being mapped with Hping2 as well as advancements in
>Idle Host Scanning technologies are then briefly reviewed. The paper
>concludes with a quick breakdown of a few defensive recommendations
>for combating Idle Host Scanning.
>
>For the full paper see: http://rr.sans.org/updateseries/hping2.php
>* Note this paper will be removed from the update section in one week
>
>Conference Training Opportunities:
>
>SANS will be holding two conferences in Europe this November in
>Barcelona and Amsterdam! The conferences will allow those of you
>in Europe to get SANS' highly regarded world-class training live
>without having the expense of travel across the Atlantic.  We have
>also already started planning a return to London in June of 2003,
>so be sure to watch http://www.sans.org/new.php for this conference.
>
>Tracks offered November '02 in Europe by conference:
>SANS Spain, November 11-16, 2002
>- Track 1: SANS Security Essentials and the CISSP Common Body of
>Knowledge
>
>More information and registration at http://www.sans.org/Spain
>
>SANS Amsterdam, November 20-25, 2002
>- Track 1: SANS Security Essentials and the CISSP Common Body of
>Knowledge
>- Track 2: Firewalls, Perimeter Protection, and VPNs
>- Track 3: Intrusion Detection In-Depth (Hands-On)
>More information and registration at http://www.sans.org/Amsterdam
>
>
>Opportunities to get involved:
>
>We are currently collecting information from the community for
>several projects including the SANS Salary Survey, an update to
>the SANS/FBI Top 20 list, and a new survey on Future Trends in
>Information Security. To participate in any or all of these projects
>visit http://www.sans.org/surveys
>
>In addition to surveys, the Internet Storm Center is up and running,
>watching for potential new threats. You can help detect threats early
>by joining the FightBack Program. For information on how you can join,
>see http://www.dshield.org/fightback.html
>
>
>Mentoring Opportunities:
>
>If you hold a GIAC certification, you may ask to be considered
>as a Local Mentor. Local Mentors act in their community or within
>their organization to help others through the SANS online training
>program. Classes are formed in designated cities where there
>is sufficient interest and we are able to locate an available
>qualified mentor and an acceptable venue. Each class exists only
>for the duration of the applicable course and usually involves
>10 meetings with the mentor and the other students to discuss the
>material, ask and answer questions, and help each other prepare for
>certification. Currently Tracks 1 and 2 are available in the Mentor
>Program. If you are interested in becoming involved with the mentor
>program contact Scott Weil at sweil@sans.org.
>
>
>Update Series Paper
>Title: Steganography: Past, Present, Future
>By: James C. Judge
>
>Steganography (a rough Greek translation of the term Steganography is
>secret writing) has been used in various forms for 2500 years. It
>has found use variously in military, diplomatic, personal and
>intellectual property applications. Briefly stated, steganography is
>the term applied to any number of processes that will hide a message
>within an object, where the hidden message will not be apparent to
>an observer. This paper explores steganography from its earliest
>instances through potential future application
>
>For the full paper see:
>http://rr.sans.org/updateseries/steganography4.php
>* Note this paper will be removed from the update section in one week
>
>For over 2000 free papers on information security
>and related topics visit the SANS Information Security
>Reading Room at http://rr.sans.org. Registration required.
>_________________________________________________________
>
>I hope you enjoyed our new update and please remember suggestions
>are not only welcome they are appreciated. Send your update ideas
>to updateideas@sans.org.
>
>Sincerely,
>Stephen Northcutt




..::SNHYPER::..
"Security developer"
Linux registered { user #249109, machine #133922 };
Security Checkpoint -> http://snhyper.owns.it
PGP Key Fingerprint= CB BB FC B2 43 69 2E 9C 27 9F C5 40 C3 F3 18 1A


_________________________________________________________________
MSN Foto č il sistema pių facile per condividere e stampare foto online: 
http://photos.msn.it


________________________________________________________
http://www.sikurezza.org - Italian Security Mailing List