Network Security Monitoring
Add to your list(s)
Download to your calendar using vCal
If you have a question about this talk, please contact Stephen Lewis.
This presentation will introduce the tenets of network security monitoring (NSM) as defined and applied by Richard Bejtlich. Attendees will see how Bejtlich approaches incident detection and response by using statistical, session, full content, and alert data. The open source NSM suite Sguil (www.sguil.net) will be demonstrated via a free VMware image that attendees can try. Network-centric incident response and forensics issues will also be covered. Expect a lively discussion!
This talk is part of the Computer Laboratory Security Seminar series.
This talk is included in these lists:
Note that ex-directory lists are not shown.
|
![[Search]](https://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](https://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](https://talks.cam.ac.uk/images/contact.gif?1209136071)
![[University of Cambridge]](https://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small}
![[Talks.cam]](https://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071)
Richard Bejtlich, TaoSecurity
Friday 19 May 2006, 16:00-17:00