Favorite Speaker Quotes from SANS Incident Detection Summit

December 18th, 2009 admin

Taking another look at my notes, I found a bunch of quotes from speakers that I thought you might like to hear. “If you think you’re not using a MSSP, you already are. It’s called anti-virus.” Can anyone claim that, from the CIRTs and MSSPs panel? Seth Hall said “Bro is a programming language with a -i switch to sniff traffic.” Seth Hall said “You’re going to lose.” Matt Olney agreed and expanded on that by saying “Hopefully you’re going to lose in …


Originally posted on TAOSecurity

Related Videos from Youtube

  • phone security and cybersecurity ar...
    taosecurity.blogspot.com another of my two in one videos but this time i want to say to my subbers, that i will protect you guys from hackers, whenever i can in any form, cell phone security or pc i'm here for you guys and the youtube cominuty at large....
  • is prillo a nice security person or...
    geeks.pirillo.com i wouldn't mind if i got more subscribers who can watch my videos and i could help them in a friendly way and a good way, i'm not like prillo in any way i don't get mad at hateful comments etc taosecurity.blogspot.com
  • Zombie aware month.......avi...
    blog.fortinet.com come on join me and help in the fight against pc zombies..... i will deffend the youtube comminuty against hackers...... taosecurity.blogspot.com
  • AFCERT circa 2000...
    This video shows the United States Air Force Computer Emergency Response Team (AFCERT) in 2000. Kelly AFB, Security Hill, and Air Intelligence Agency appear. The colonel who leads the camera crew into room 215 is James Massaro, then commander of the Air Force Information Warfare Center. The old Web-based interface to the Automated Security Incident Measurement (ASIM) sensor is shown, along with a demo of the "TCP reset" capability to terminate TCP-based sessions. We have a classic quote about a "digital Pearl Harbor" from Winn Schwartau, "the nation's top information security analyst." Hilarious, although Winn nails the attribution and national leadership problems; note also the references to terrorists in this pre-9/11 video. "Stop the technology madness!" Incidentally, if the programs shown were "highly classified," they wouldn't be in this video!

More videos ...

 
  Related Posts
Brief Thoughts on SANS WhatWorks Summit in Forensics and Incident Response 2010
Brief Thoughts on SANS WhatWorks Summit in Forensics and Incident Response 2010
Last week I spoke at the third SANS WhatWorks Summit in Forensics and Incident Response in DC, organized and led by Rob Lee. As usual, Rob did a wonderful job bringing together interesting speakers and timely topics. I thought my presentation on “CIRT-level Response to Advanced Persistent Threat” went well and I enjoyed participating... 
SANS WhatWorks Summit in Forensics and Incident Response
SANS WhatWorks Summit in Forensics and Incident Response
I wanted to remind everyone about the SANS WhatWorks Summit in Forensics and Incident Response in DC, 8-9 July 2010. The Agenda looks great. I will offer the “Expert Briefing: CIRT-level Response to Advanced Persistent Threat” and participate on the “APT Panel Discussion.” This IR event is a great precursor to my next SANS... 
Bejtlich to Speak at SANS Forensics and Incident Response 2010
Bejtlich to Speak at SANS Forensics and Incident Response 2010
I am pleased to announce that I will return for the third SANS WhatWorks Summit in Forensics and Incident Response in DC, 8-9 July 2010. Rob Lee sent an email stating I would be on the Advanced Persistent Threat Panel with Chris Glyer and Mike Cloppert, so I’m looking forward to participating. I might also have a solo presentation, but I... 
Security Pros Question Deployment of Smart Meters
Security Pros Question Deployment of Smart Meters
The country’s swift deployment of smart-grid technology has security professionals concerned that utilities and smart-meter vendors are repeating the mistakes made in the rollout of the public internet, when security became a priority only after malicious attacks had reached mass levels. But when it comes to the power grid, the costs of... 
Every Software Vendor Must Read and Heed
Every Software Vendor Must Read and Heed
Matt Olney and I spoke about the role of a Product Security Incident Response Team ( PSIRT ) at my SANS Incident Detection Summit this month. I asked if he would share his thoughts on how software vendors should handle vulnerability discovery in their software products. I am really pleased to report that Matt wrote a thorough, public blog post... 
  Related Tweets from Twitter
extantproject (extantproject)  : @taosecurity ringmap does the exact same thing as certain fancy pcap NICs: DMA to copy the bits directly into userspace, bypassing BPF, etc...
Updated : 2010-07-30T18:14:39Z   |  Reply  |  View Tweet
extantproject (extantproject)  : @taosecurity ringmap compiles on FreeBSD 8 i386 but not amd64. it's being worked on in 9-CURRENT: http://bit.ly/cTjBnV http://bit.ly/90wRbc..
Updated : 2010-07-30T18:09:29Z   |  Reply  |  View Tweet
asteingruebl (Andy Steingruebl)  : @taosecurity ICANN SSAC report "SAC 40 Measures to Protect Domain Registration Services Against Exploitation or Misuse" http://bit.ly/7Vqm4q..
Updated : 2010-07-30T17:54:08Z   |  Reply  |  View Tweet
taosecurity (Richard Bejtlich)  : Reading Cisco IPJ on deploying DNSSEC. I predict attacks on registrar Web interfaces where users upload DS records. Vector to corrupt zones?..
Updated : 2010-07-30T13:06:28Z   |  Reply  |  View Tweet
egokcen (Ertu?rul Gökçen)  : Hehehe :-) RT @taosecurity #blackhat Search Engine deOptimization: inject code into competitor Web sites, then get them black listed so .....
Updated : 2010-07-30T12:57:56Z   |  Reply  |  View Tweet
  Related News from Digg
Leave a comment | Trackback
No comments yet.

Spam Protection by WP-SpamFree

TOP