• Twitter
  • LinkedIn
  • Email
  • feed
Search

Chris Sanders

Information Security Analyst, Author, and Instructor

Menu
Skip to content
  • Home
  • About
    • Top Posts
  • Blog
  • Training
  • Publications
  • Packets
  • Podcast
  • Contact
  • Mailing List

Category: Network Security Monitoring

  • Analysis

Content Matching Detection and Additional Outputs

  • Posted on December 7, 2018December 7, 2018

A simple content match provides the launching point for many of our investigations. You write…

Read More
  • Network Security Monitoring

Security Onion Cheat Sheet

  • Posted on June 6, 2017April 23, 2018

I’ve been a Security Onion user for a long time and recommend it to people…

Read More
  • Analysis

5 Human-Centered Takeaways from the SANS SOC Survey

  • Posted on May 24, 2017May 24, 2017

SANS recently released the results of their SOC survey that was put together by Chris…

Read More
  • Investigations

Investigation Case Management with TheHive

  • Posted on March 14, 2017March 14, 2017

I’ve struggled for a long time to find a case management system that I thought…

Read More
  • Hunting

Three Useful SOC Dashboards

  • Posted on October 24, 2016October 24, 2016

I worked in security operation centers for a long time, and I really grew to…

Read More
  • Network Security Monitoring

Video: Building an NSM Lab

  • Posted on March 14, 2016December 21, 2017

Building a security lab is something I get asked about really often. So often, in…

Read More
  • Analysis

Investigations and Prospective Data Collection

  • Posted on June 29, 2015

One of the problems we face while trying to detect and respond to adversaries is…

Read More
  • Intelligence

The Value of Watching Game Tape

  • Posted on March 25, 2015March 25, 2015

Being a native Kentuckian, it’s no secret that I bleed blue. As I write this, my…

Read More
  • Analysis

Investigating Like a Chef

  • Posted on January 7, 2015

Whenever I get the chance I like to try and extract lessons from practitioners in…

Read More
  • Honeypots

Charleston ISSA Slides: Using Canary Honeypots for NSM

  • Posted on November 23, 2014

I recently spoke at a Charleston ISSA meeting about using honeypots as an effective part…

Read More

Posts pagination

Page 1 Page 2 Page 3 Next Page
© Copyright - Chris Sanders
Magazine WordPress Themes by DesignOrbital
×