In this talk, Ahmed Abugharbia and Abdul Kittana will deep dive into various methodologies and options for developing applications using generative AI technologies. They will discuss the process of building ASecureCloud’s AI-powered features, lessons learned, and demonstrate how you can apply similar principles in your own environments. Objectives: Learn capabilites of current generative AI technologies Different options for building app...

Where can you find leaders from Amazon Web Services (AWS), Google Cloud, Microsoft Azure, and SANS Institute, together on one virtual stage? It's happening for the first time ever at the SANS Cloud Security Exchange 2023. At the inaugural event in 2022, thousands of attendees from across the globe enjoyed learning from independent cloud security experts from SANS Institute who were paired with leaders from the cloud security providers. It work...

During the past decade, increasing numbers of organizations have transformed their applications to be cloud native, building workloads based on multicloud architecture. Connecting and securing these cloud workloads has not been effective for many reasons and today, there are many benefits to a converged workload communication architecture that unifies security and operations. SANS tested the new Zscaler Zero Trust platform for cloud workloads,...

A large majority of ransomware incidents involve both obfuscated scripts and Cobalt Strike. PowerShell reigns supreme as the most common type of obfuscated script found in ransomware cases. Do you know what to do should you find an obfuscated PowerShell script during response? What if you run into an obfuscated, PowerShell-based Cobalt Strike downloader? Do you know how to decode the downloader? Do you know how to review the shellcode found mu...

Investigation is often considered both an art and a science, and practitioners merge these disciplines in the search for the facts in their investigations. While the best tool in both art and science is the amazing capacity of the human brain, and this is especially apparent in the field of digital forensics and incident response, where we match ourselves against the creative ingenuity of committed and capable threat actors; we do need other t...

Technology has done wonders for productivity over the past 20 years, but cybercriminals have improved their own efficiency using the same tools. In just the past three years, attackers have cut the time needed to deploy an attack from months to days using automation and as-a-service technologies. Meanwhile, cybersecurity teams have never had more data to find patterns and stop attacks — yet the time to detect and respond is still measure...

Government organizations face threats, like none other. Ensuring that a robust security posture fits inside the regulatory and budget requirements of any agency is a huge feat onto itself. Add on all the threats that adversaries bring to your doorstep, and it can seem like an insurmountable task. From vulnerabilities to zero-days to patch management to user education and enablement, it’s easy for security teams to get lost in “What...

Over the past year, cyber threats have continued to plague organizations of all types. From geopolitical conflicts such as the war in Ukraine to the increased use of social engineering techniques by adversaries, cyber threat intelligence (CTI) professionals have had a challenging time providing actionable intelligence to their consumers. On this webcast, we’ll review insights from this year’s SANS CTI Survey, including both the cha...

The increasing reliance on cloud computing has driven the need for efficient and secure IT environments, necessitating the development of robust engineering skills across various domains. This keynote speech will explore the world of cloud investigations, focusing on the critical intersection of data engineering, infrastructure as code (IaC), and Continuous Integration/Continuous Deployment (CI/CD) pipelines. Attendees will learn about the lat...

As business applications have moved from monolithic blocks of code to distributed collaborations across multiple services, new forms of vulnerabilities have emerged and attackers have taken advantage of them. To explore this topic, SANS conducted a survey to collect information around industry practices in application security, focusing on Application Programming Interface (API) security awareness, processes, and controls. This webcast present...