SHARE
Security Testing and Penetration Testing Webcasts
Please click the link for the webcast that you would like to attend. After registering, you will receive a confirmation email containing login instructions.
Penetration Testing Software Demonstrations
Join Alex Horan, Director of Product Management, for this highly informational webcast that will demonstrate how attackers have exploited the IE zero day flaw.
Join Alex Horan, Director of Product Management for Core Security for a step-by-step depiction of an attack similar to that described in the Gonzalez indictment. Through the demonstration, you’ll also learn how commercial-grade penetration testing software enables you to see your IT systems as an attacker would.
Comprehensive Penetration Testing with CORE IMPACT Pro
View a recorded demonstration of network, endpoint and web application penetration testing with CORE IMPACT Pro.
What's New in CORE IMPACT Pro v12
Get a preview of some of the new features in CORE IMPACT v12.
Today’s Threat Environment
Pen Tests Evolved: The Advanced Threat Cycle with Dave Shackleford
No matter your opinion on the "APT", the attacks are happening and organizations are losing data left and right. How can you determine your susceptibility to these attacks? There's no one answer to this, but proactive security assessments that emulate some of the attackers' methods can help you to pinpoint your weak spots.
In this webcast, noted security and penetration testing expert Dr. Eric Cole will share his insight into how organizations can rapidly improve their resiliency to today’s most advanced malware and hacking techniques via more frequent and proactive assessment.
Join Iván Arce, CTO of Core Security present his assessment of the current status and five-year threat forecast for the following technologies, including virtualization, mobile devices, SaaS, and cloud computing.
Join distinguished analyst John Pescatore, of leading analyst firm Gartner, for insights into how IT security practices must evolve to mitigate the risks posed by today´s prolific threat environment.
See how CyberSecurity by Chubb can complete your information security program by picking up where IT defenses and internal security policies leave off.
Learn about the 5 key gaps in cyber security that hackers are able to consistently and repeatedly exploit.
Why Penetration Testing
"Optimizing Vulnerability Management" with Forrester analyst Chenxi Wang
During the webcast, Core Security Technologies and Chenxi Wang of Forrester Research discuss how proactive identification and validation of known (and unknown) vulnerabilities is helping IT security leaders to keep pace with the evolving threat landscape.
SC Magazine recently marked its 20th anniversary with a special issue including the publication's picks for 20 influential security products of the past 20 years. Please join Peter Stephenson for a webcast review of these products and how they have assisted SC Magazine's security pros during tough situations, made their jobs easier, and helped them to make new discoveries about the current threat environment.
Find out how penetration testing can improve your network security, identify what resources are exposed, and determine if your current security investments are detecting and preventing attacks.
During this webcast InfoWorld and Core Security takes an in-depth look at penetration testing, a security assessment technology that’s been sparking a lot of interest lately and was newly recognized in the 2008 InfoWorld Awards Security Category.
Topics for Information Security Managers
The Numbers Game: Tracking Information Security Metrics That Matter
Join Core Security and Ed Ferrara, principle research analyst at Forrester Research, for a webcast discussion of which metrics can provide the greatest clarity and impact for your security decision-making and planning.
"The Human Operating System: Keeping It Secure"
Please join Core Security and Lance Spitzner for a webcast featuring an in-depth look into how you can arm your employees to defend themselves against phishing and other social engineering attacks.
"Building Security Metrics for the Enterprise" featuring Khalid Kark
In this webcast, Khalid Kark, Vice President and Principal Analyst at Forrester Research outlines his methodology - informed by hundreds of interviews with leading CISOs - for establishing and trending critical IT security metrics across the enterprise.
"Mining The Mountain: Streamlining Vulnerability Management"
Join Core Security Technologies and Peter Ridgley, former VP of Information Security at Iron Mountain share his process for isolating critical, real-world exposures from among volumes of vulnerability data.
Join Randy Marchany, director of the VA Tech IT Security Lab and SANS faculty member will share his insights from Virginia Tech’s proven IT Security Review process, which includes the proactive replication of threats originating from both inside and outside the university.
Join Larry Whiteside, Jr., CISO for the Visiting Nurse Service of New York share his methods for creating proactive IT security and vulnerability management best practices to help maximize internal resources and minimize risk.
Join Core Security and Dr. Eric Cole for a webcast that will demonstrate how a proactive enterprise security testing program can give you a new perspective on your organization's overall risk preparedness.
Join Marc Maiffret, director of Professional Services at DigiTrust, for a look at the changing IT threat environment, and learn strategies for effectively identifying and prioritizing vulnerabilities.
Learn how you can develop and maintain a VM program that provides ongoing protection against hacking, spear phishing, and other IS threats with this on-demand webcast from Core Security, Jacadis and Qualys.
Join Dr. Eric Cole, SANS fellow and senior scientist with Lockheed Martin Information Technology, to learn new methods for making the most of your IT security budget and walking the “hire versus buy” tightrope.
Find out how techniques traditionally used by attackers can be used to safely and regularly evaluate your organization’s security posture.
Join Justin Peltier, a leading security consultant and strategist, for a webcast outlining new methods for simplifying IT security and increasing its value to non-technical members of your organization.
Technical Know-How for Security Testers
Human Hacking Exposed - Part 1
Many organizations invest tremendous amounts of time and energy into the security of their computers - but what about their end user security? The fact is, regardless of your perimeter defenses, large-scale data breaches can still stem from something as simple as an end user clicking the wrong email or social media link. Please join Chris Hadnagy for a three part webcast series featuring six tips for prevention of social engineering attacks.
Effective Client-Side Testing: No Exploit? No Problem
If an attacker is going to get in, they are going to get in by attacking a user. Sure, 0-days are neat, but most of us are lazy and/or do not have the time to code them up. Instead, attackers and testers often focus on the users. During the presentation, John Strand will cover his encounters with client-side testing.
Best of the Best: Integrated Vulnerability Scanning & Penetration Testing
Please join technology partners eEye Digital Security and Core Security for a webcast to see how integrated vulnerability scanning and penetration testing can significantly increase the efficiency with which you identify, prioritize and remediate critical IT vulnerabilities.
Seeing Red: Why You Shouldn't Ignore Medium-Level Vulnerabilities
During the presentation John Strand will share his findings on how vulnerabilities flagged as medium-level (and even low-level) can open the door to large-scale network breaches.
"Blue Teams: Don't Call It A Come Back" Part I with Paul Asadoorian and John Strand
This webcast will be the first of a two-part series focused on how security professionals can fight back against attacks using a range of techniques from determining attribution, to getting shell access on an attacker's box.
"The Penetration Testing Perfect Storm" Trilogy Redux Series
During these webcasts, security experts Ed Skoudis, Joshua Wright and Kevin Johnson will go beyond simple vulnerability exploitation and show you how to replicate multiple stages of an attack - from identifying and profiling exposed systems to gaining root and gathering data for reporting and remediation.
Please join security expert Andrew Whitaker for an inside look at some of the advanced application penetration testing techniques covered during Training Camp’s Certified Ethical Hacker (C|EH) course.
Join Jack Walsh Walsh of ICSA Labs for a webcast presentation on how to select the right IPS for your organization and optimize it for maximum effectiveness. Jack will share ISCA Labs' objective methodology for testing and certifying IPS products - and give you practical tips for selecting an IPS and configuring it for optimum performance and security.
Join Core Security and Paul Asadoorian, founder of PaulDotCom Security Weekly, for a webcast series offering tips on successfully integrating penetration testing into your vulnerability management program.
Learn tips for replicating real-world attacks that traverse multiple layers of infrastructure using combined network, web app, and wireless attack techniques.
Core Security Consulting Services shares lessons learned during extensive field work in application security testing.
Drawing on his popular SANS course, “Intrusion Detection In-Depth,” Mike Poor will provide practical tips for getting the most out of your intrusion detection and prevention investments through security testing.
During these webcasts, Ed Skoudis will look at the art and science of using penetration testing to gain visibility into your organization’s security posture.
Topics for Government Security Professionals
Security Testing for Compliance
Join Tom Kellermann of Core Security Technologies and Marcus Sachs of Executive Director for National Security and Cyber Policy at Verizon in a discussion of security and compliance requirements as handed down by the North American Electric Reliability Council (NERC) in its Critical Infrastructure Protection (CIP) standard.
Learn about NIST 800-53A security testing requirements, and see how automated security testing solutions can enable government agencies to both accelerate their assessments and prove due diligence to FISMA auditors.
Join PCI Council general manager, Bob Russo, for an overview of the PCI DSS, recent modifications to the Standard, and clarifications on the penetration testing requirement.
Find out how the right security testing practices can help you prevent card member data breaches and address multiple PCI requirements.
Spotlight on Web Application Penetration Testing
Roman Holiday: Web Application Assessment and Exploitation with Kevin Johnson
Using the classic Audrey Hepburn movie "How to Steal a Million" as inspiration, Secure Ideas consultant and SANS instructor Kevin Johnson will demonstrate the latest web application exploitation techniques and introduce you to tools that can make the pen testing process easier.
"Web Application Pen Testing: Can Someone "Steal a Million" From You?
In this talk, loosely based on the Audrey Hepburn movie Roman Holiday, Kevin Johnson will discuss how organizations need to assess their web applications. As web applications are becoming much more present due to mobile clients and the like, it has become critical for testers and organizations to evaluate these risks.
Join Core Security, Ed Skoudis and Kevin Johnson of InGuardians, for a webcast discussing SQL and content injection. The webcast will also outline and run through a real-world scenario that demonstrates how these tools and attacks can be used directly in a penetration test.
Join Core Security, Shon Harris & Mike Lester of LogicalSecurity, along with Wayne Burke & Benjamin Böck of SecureIA to learn techniques for assessing your web infrastructure against the most prevalent online threats today.
Join Core Security and Rich Mogull, founder of Securosis and former Gartner analyst, for a discussion of how to proactively assess your web applications against data breach threats.
Spotlight on Cloud Security Testing
Make it Rain! Penetration Testing Your Cloud Environment
Please join Core Security and Dave Shackleford, founder of Voodoo Security, for a webcast presentation designed to help you extend proactive security testing to your cloud environment. During the webcast, Dave will draw on his extensive experience working with cloud providers and customers to conduct effective, remote tests of cloud-based systems and applications.