Search| Browse| Contribute
Library| Blogs| Jobs| Podcasts| Wikis| Feeds
Page Location:
Home > Browse > Cybersecurity > Security Management > Network Vulnerability Assessment, Presented at Security Professionals Conference
Alternate ViewsRSS

Network Vulnerability Assessment, Presented at Security Professionals Conference

Network Monitoring with Nagios
Added by the EDUCAUSE Librarian
Title:Network Monitoring with Nagios (ID: SEC07094)
Author(s):Matthew Gracie (Canisius College)
Origin:Presented at Security Professionals Conference (04/11/2007)
Type:Presentations/Speeches
Abstract:Nagios is a freely available open source network and host monitoring tool. This presentation will discuss using Nagios in an academic environment to monitor servers, detect network problems, and alert administrators to problems before the user population is affected.
View this resource:
http://www.educause.edu/ir/library/pdf/SEC07094.pdf
| | | |
Login to post comments  Send to a Friend  1826 reads

Honeypots as a Tool to Improve Incident Response Readiness at USP
Added by the EDUCAUSE Librarian
Title:Honeypots as a Tool to Improve Incident Response Readiness at USP (ID: SEC07101)
Author(s):Alberto Camilli (Universidade de Sao Paulo) and Maria Isabel Teixeira das Chagas (Universidade de Sao Paulo)
Origin:Presented at Security Professionals Conference (04/12/2007)
Type:Presentations/Speeches
Abstract:A honeypot network was deployed in the main campuses of USP. This presentation will discuss how these honeypots were configured, as well as the initiative's impact on the perception of incident reduction at USP. It will also demonstrate the mechanism for automated honeypot notification and the major statistics resulting from honeypot incidents at USP.
View this resource:
http://www.educause.edu/ir/library/powerpoint/SEC07101.ppsHoneypots at USP
http://www.educause.edu/ir/library/pdf/SEC07101.pdfHoneypots for the Control of Security Incidents
| |
Login to post comments  Send to a Friend  1793 reads

Monkey-in-the-Middle Attacks on Campus Networks
Added by the EDUCAUSE Librarian
Title:Monkey-in-the-Middle Attacks on Campus Networks (ID: SEC07105)
Author(s):Andrew J. Korty (Indiana University) and Sean Krulewitch (Indiana University)
Origin:Presented at Security Professionals Conference (04/12/2007)
Type:Presentations/Speeches
Abstract:Although monkey-in-the-middle (MITM) attacks are well-known, little is done to prevent them. We'll give examples of MITM attacks against SSL Web sites, Kerberos, and SSH, all using free tools in a typical campus computer lab, then we'll show how vendors, sysadmins, and even end users can protect against these attacks.
View this resource:
http://www.educause.edu/ir/library/powerpoint/SEC07105A.pps
| | | |
Login to post comments  Send to a Friend  1926 reads

Making the Campus Web Safer, One Application at a Time
Added by the EDUCAUSE Librarian
Title:Making the Campus Web Safer, One Application at a Time (ID: SEC07083)
Author(s):Diane Gierisch (University of Texas at Austin) and PJ Abrams (University of Texas at Austin)
Origin:Presented at Security Professionals Conference (04/11/2007)
Type:Presentations/Speeches
Abstract:A year ago, UT Austin identified Web application security as an important initiative for developers. As part of that initiative, UT developed an application security curriculum focused on the Open Web Application Security Project (OWASP) top 10, drafted a set of secure coding guidelines, and began scanning applications to identify vulnerabilities. This presentation will describe these efforts and the results they have yielded thus far.
View this resource:
http://www.educause.edu/ir/library/word/SEC07083A.docOverview
http://www.educause.edu/ir/library/powerpoint/SEC07083B.ppsPresentation
| | |
Login to post comments  Send to a Friend  1488 reads

Sensitive Information Sweep Using Cornell's Spider
Added by the EDUCAUSE Librarian
Title:Sensitive Information Sweep Using Cornell's Spider (ID: SEC07084)
Author(s):Kerry Havens (University of Colorado at Boulder), Steven Lovaas (Colorado State University), and Wyman Miles (Cornell University)
Origin:Presented at Security Professionals Conference (04/11/2007)
Type:Presentations/Speeches
Abstract:Colorado State University and the University of Colorado each chose Cornell University's Spider search utility to find sensitive information on Windows, OSX, Linux, and Solaris computers. Working together, the three institutions addressed compliance issues while providing feedback for new versions of Spider. Approaches, pitfalls, and recommendations will be presented.
View this resource:
http://www.educause.edu/ir/library/powerpoint/SEC07084.pps
| | |
Login to post comments  Send to a Friend  1952 reads

Automated Network Isolation at Indiana University
Added by the EDUCAUSE Librarian
Title:Automated Network Isolation at Indiana University (ID: SPC0666)
Author(s):David Greenberg (Indiana University System)
Origin:Presented at Security Professionals Conference (04/11/2006)
Type:Presentations/Speeches
Abstract:This presentation will describe the recent network isolation mechanism put in place at Indiana University. The project provides a means of automatically or manually isolating a device by IP address on the university network by propagating null routes for the device via the Border Gateway Protocol.
View this resource:
http://www.educause.edu/ir/library/powerpoint/SPC0666.ppsAutomated Network Isolation at Indiana University Slides
http://www.juniper.net/support/junoscript/Junoscript API
[Off site]
| |
Login to post comments  Send to a Friend  2165 reads

Detection and Investigation of Compromised Hosts on Campus Networks
Added by the EDUCAUSE Librarian
Title:Detection and Investigation of Compromised Hosts on Campus Networks (ID: SPC0678)
Author(s):Daniel Adinolfi (Cornell University)
Origin:Presented at Security Professionals Conference (04/11/2006)
Type:Presentations/Speeches
Abstract:Cornell University developed a successful methodology to locate, contain, and investigate compromised systems on our networks. We recently extended this methodology to more effectively respond to compromises that can potentially result in sensitive data loss.
View this resource:
http://www.educause.edu/ir/library/pdf/SPC0678.pdfDetection and Investigate of Compromised Hosts on Campus Networks Presentation
| | | |
Login to post comments  Send to a Friend  2529 reads

Virtual Attack Detection and Visualization Sensors: A Concept for Self-Healing Honeynets
Added by the EDUCAUSE Librarian
Title:Virtual Attack Detection and Visualization Sensors: A Concept for Self-Healing Honeynets (ID: SPC0569)
Author(s):Sean Ensz (University of Oklahoma), Mark Weiser (Oklahoma State University), and Sallie Wright (University of North Carolina at Chapel Hill)
Origin:Presented at Security Professionals Conference (04/04/2005)
Type:Presentations/Speeches
Abstract:Honeynets have proven to be valuable to many universities; however, they can be too time-consuming for many IT security organizations. A self-healing distributed honeynet can maximize the intelligence gathered while limiting the hours spent managing the system. The shared information can be used to track and block malicious hosts and to provide a framework for academic research.
View this resource:
http://www.educause.edu/ir/library/powerpoint/SPC0569.ppsHoneynet Collaboration
http://www.educause.edu/ir/library/pdf/SPC0569.pdfPresentation
|
Login to post comments  Send to a Friend  2731 reads

Protecting University Networks Using Automated Scanning
Added by the EDUCAUSE Librarian
Title:Protecting University Networks Using Automated Scanning (ID: SPC0404)
Author(s):Nancy Magers (Brown University) and Jacques Joshua Richard (University of Minnesota Duluth)
Origin:Presented at Security Professionals Conference (2004)
Type:Presentations/Speeches
Abstract:This presentation will describe how to extend an existing open source system to preemptively scan untrusted hosts to determine patch level before granting general network access, with a specific focus on residence hall networks. It will also describe how to provide further protection by scanning networks as vulnerabilities are released using nessusd fast scans in conjunction with a user notification and registration clearing process.
View this resource:
http://www.educause.edu/ir/library/pdf/SPC0404.pdf
| |
Login to post comments  Send to a Friend  4087 reads