Contact Us“Knowledge has to be improved, challenged, and increased constantly
or it vanishes.” ~ Peter Drucker
Following are cybersecurity resources that we frequently access during our consulting and research activities. Feel free to share these links with other practitioners. If you have comments on these resources or would like to suggest additions to these resources, please contact Dr. Steffani Burd directly at sburd@ansecgroup.com or 917.783.8496.
DShield.org: http://www.dshield.org
DShield.org is a free distributed intrusion detection system that provides a platform for firewall users to share intrusion information. Since DShield’s official launch in 2000, it has grown to be a dominating attack correlation engine with worldwide coverage, and is the data collection engine behind the SANS Internet Storm Center. Analyses provided by DShield have been used in early detection of worms such as Ramen, Code Red, Leaves, and SQL Snake.
InfraGard: http://www.infragard.net
InfraGard is an information sharing and analysis effort serving the interests and combining the knowledge base of a wide range of members. InfraGard, a partnership between the private sector and the FBI, is an association of businesses, academic institutions, state and local law enforcement agencies, and other participants dedicated to sharing information and intelligence to prevent hostile acts against the United States. InfraGard Chapters are geographically linked with FBI Field Office territories, and each InfraGard Chapter has an FBI Special Agent Coordinator assigned to it.
ISIS Cybersecurity Laboratory at NYU-Polytechnic: http://www.isis.poly.edu/
The Information Systems and Internet Security (ISIS) laboratory is an offensive security research environment where students analyze and understand how attackers take advantage of real systems. This approach gives our students a unique perspective and a proper foundation that allows them to master any area of security at NYU Poly. The ISIS Lab is for undergraduates, graduates, and professors devoted to learning and understanding practical tools and techniques used by attackers and defenders by analyzing real-world actors, hands-on experimentation, and developing projects in the lab related to information security. The lab is run by students and managed by professor Nasir Memon.
ISSA: http://www.issa.org
The Information Systems Security Association (ISSA)® is a not-for-profit, international organization of information security professionals and practitioners. It provides educational forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members. With active participation from individuals and chapters all over the world, the ISSA is the largest international, not-for-profit association specifically for security professionals. Members include practitioners at all levels of the security field in a broad range of industries, such as communications, education, healthcare, manufacturing, financial and government.
NIST: http://www.nist.gov
From automated teller machines and atomic clocks to mammograms and semiconductors, innumerable products and services rely in some way on technology, measurement, and standards provided by the National Institute of Standards and Technology, a non-regulatory federal agency within the U.S. Commerce Department’s Technology Administration. NIST’s mission is to develop and promote measurement, standards, and technology to enhance productivity, facilitate trade, and improve the quality of life. NIST carries out its mission in four cooperative programs: the NIST Laboratories; the Baldrige National Quality Program; the Manufacturing Extension Partnership; and the Advanced Technology Program, which accelerates the development of innovative technologies for broad national benefit by co-funding R&D partnerships with the private sector.
SANS: http://www.sans.org
SANS (SysAdmin, Audit, Network, Security) develops, maintains, and makes available – at no cost – the largest collection of research documents about various aspects of information security. It also operates the Internet’s early warning system – Internet Storm Center. The SANS Institute was established in 1989 as a cooperative research and education organization. Its programs now reach more than 165,000 security professionals, auditors, system administrators, network administrators, chief information security officers, and CIOs who share the lessons they are learning and jointly find solutions to the challenges they face.