Resources

Version 1.1

Current Version
Archives

Internet Storm Center/DShield Resources

Internet Storm Center/DShield - (DShield/ISC) - with its data. It will be available for use by master's degree students of SANS Technology Institute as follows: The student must submit a one page proposal to jullrich@sans.org outlining how the student wishes to use it. If the request is approved, the student will be given ssh access to the DShield data via its research mirror at the University of Wisconsin, or the student will be given a vpn account to access the malware lab.

Library Resources

Students may borrow books/media from SANS Technology Institute (STI). To view the list of library contents, click on the Excel spreadsheet here. Students may have up to 3 borrowed books in their possession at the same time for research on papers and projects that are required by the Master's Program. They may keep the book(s) for up to one month. They may renew the book(s) for one additional month by sending an e-mail request to info@sans.edu before the original due date. Requests for a book(s) should be e-mailed to info@sans.edu. If the book is available in the library, it will be mailed to the student by first class mail or priority mail or similar method to the address that the student indicates. Students must return them in good condition using first class mail or priority mail or similar method with a postmark on or earlier than the due date. (Students should NOT use a "book rate" mailing method of return since it is too slow). Students are welcome to suggest books that they would like STI to consider adding to its library. Applicants who are accepted to STI after January 31, 2007 will be charged a non-refundable $50 Library/Media Fee as a condition of acceptance or upon acceptance. If a student loses a book, they must pay for the cost of replacement (including tax and shipping cost, if any) plus a $15.00 handling charge. STI retains the right to impose late fees for over-due books. Also, all charges/fees/fines must be paid in full by the student before a degree will be awarded to a student.

Malware Lab Resources

Malware Lab from the SANS Internet Storm Center Handlers and Malware Group. It will be available for use by master's degree students of SANS Technology Institute as follows: The student must submit a one page proposal to jullrich@sans.org outlining how the student wishes to use it. If the request is approved, the student will be given a vpn account to access the malware lab.

SANS Institute Learning Resource Center

SANS Institute supplies a learning resource center through the Information and Computer Security Resources, which is a compilation of thousands of original research papers, security policies, security notes, along with a wealth of unique network security data.

  1. The SANS Institute Information Security Reading Room containing more than 1,500 original research studies, not available from any other source, in 75 categories relevant to the study of information security.

    The papers in the SANS Institute Reading Room were prepared by information security professionals to meet the requirements to earn SANS GIAC (Global Information Assurance Certification) Security Essentials certifications. On average, each of the papers reflects 30 to 40 hours of original research.

  2. The SANS Institute Security Policy Collection contains model security policies developed by major corporations and government agencies. They serve as guides and templates for security managers who need to understand and create effective security policies. At the time this was written, the Policy collection contained 28 policies. The collection grows as new security issues (such as wireless) arise and policy templates are needed.

  3. The SANS Security News Collection contains brief summaries of each week's 20 most important security news stories published in newspapers and magazines around the world. The collection provides a search capability that enables students and researchers to quickly find important stories that may be relevant to their research activities. In addition to providing a summary of the story, many entries in the collection include expert assessments and counter arguments from a half dozen of the most respected experts in the security field. The experts include Howard Schmidt, Dr. Eugene Schultz, founder of CIAC, John Pescatore, the top security analyst with Gartner, and several others.

  4. The largest glossary of security terms available on the Internet was developed jointly by the SANS Institute and the National Security Agency. It provides authoritative definitions of many of the specialized terms students will encounter.

  5. The SANS Institute Collection of Frequently Asked Questions about Intrusion Detection contains 118 authoritative discussions of the primary topics that arise when planning and implementing intrusion detection technologies.

  6. The SANS Internet Storm Center Archives contains contemporaneous analyses of new attacks that are discovered on the Internet. Internet Storm Center is the first site most government and commercial security officers visit after learning of a new attack because experts come together at that site to share what they have learned about the damage being done by the new attack and what can be done to block the attack. The archives form an extraordinary research asset because of the depth of the analysis and the currency of the topics covered. Internet Storm Center archives also provide SANS Institute students with access to raw data, summaries, and query facilities to analyze more than 12 billion malicious Internet traffic records recorded over the past 12 months. This is a rich data source for advanced security research projects looking at attack patterns and how fast worms spread through the Internet.