Publications

Books

• Intrusion Detection Honeypots (2020)
  Bookshop – Amazon
• Applied Network Security Monitoring (2014)
  Bookshop – Syngress – Amazon
• Practical Packet Analysis (3rd Edition) (2017)
  No Starch Press – Amazon
• Practical Packet Analysis (2nd Edition) (2011)
• Practical Packet Analysis (1st Edition) (2007)

Papers

• The Analyst Mindset: A Cognitive Task Assessment of of Digital Forensic Analysts [My Doctoral Dissertation] (2021)
• Toward Applied Andragogy in Cyber Security Education (2020)
• Creative Choices: Developing a Theory of Divergence, Convergence, and Intuition in Security Analysts (2019)

Presentations

All presentation slides can be found at the Slideshare profile below. When videos are available, those specific presentations will be linked from the talk title.I sometimes forget to upload presentations, so if you saw something somewhere and would like the slides, please contact me.

Slideshare Profile – http://www.slideshare.net/chrissanders88/presentations

• Mental Models for Network Evidence, Sharkfest 2019 Keynote (Berkeley, CA 2019)
• Choice Architecture for Security Practitioners, BSides Augusta (Augusta, GA 2019) [Also delivered at the SANS Blue Team Summit, Lousiville, KY 2019)
• Leveraging Curiosity to Enhance Analytic Technique, SANS Cyber Threat Intelligence Summit (Bethesda, MD 2018)
• Pivoting Effectively to Catch More Bad Guys, Security Onion Con (Augusta, GA 2017)
• The Mind of a Hunter: A Cognitive, Data-Driven Approach, SANS Threat Hunting Summit (New Orleans, LA 2017)
• A Cognitive Approach to Security Investigations, Art into Science (Austin, TX 2017)
• The Investigator’s Labyrinth, Security Onion Con (Augusta, GA 2016)
• Using Honeypots for Network Security Monitoring, BSides Augusta (Augusta, GA 2016)
• Minding the Metacognitive Gap, BSides New Orleans (New Orleans, LA 2016)
• Building a Better analyst Using Cognitive Psychology, BSides Augusta (Augusta, GA 2015)
• Building an Infosec Community, Charleston ISSA (Charleston, SC 2015)
• Building a Malware Analysis Lab on a Budget, Charleston ISSA (Charleston, SC 2015)
• Defeating Cognitive Bias and Developing Analytic Technique, BSides Augusta (Augusta, GA 2014)
• Applied Detection and Analysis with Flow Data, MIRCon (Washington, DC 2014)
• Applied Detection and Analysis with Flow Data, OpenNSM (Online, 2014)
• Deceive to Detect: Using Canary Honeypots for Network Security Monitoring, Augusta ISSA (Augusta, GA 2014)
  
• Weaponizing the User, Commonwealth of Kentucky Cyber Security Awareness Summit (Frankfort, KY 2012)
• Real-World Security Scripting – DHS US-CERT GFIRST (Nashville, TN 2011)
  

Electronic Media

• Saving Money and Time with Virtual Server (2006)
  O’Reilly (Out of Print)