CERT Tools Reflect Our Research We offer a range of tools and methods to help you conduct forensic examinations, analyze vulnerabilities, monitor large-scale networks using flow data, and more. Explore our tools repositories We use the insights gained through our research and analysis to develop practical solutions to relevant problems. Read more about our work
STIGs Home Updates! IAVM to CVE Mapping Spreadsheet - Update April 11, 2014 Google Chrome Browser STIG for Windows, Version 1, Release 1 - Update April 10, 2014 IAVM to CVE Mapping Spreadsheet - Update April 4, 2014 IAVM to CVE Mapping Spreadsheet - Update March 28, 2014 Draft HPUX SMSE STIG Version 1 - Update March 26, 2014
National Vulnerability Database (NVD) National Checklist Program Repository
What is SANS? SANS is the most trusted and by far the largest source for information security training in the world. We offer training through several delivery methods - live & virtual, classroom-style, online at your own pace or webcast with live instruction, guided study with a local mentor, or onsite at your workplace where even your most remote colleagues can join in via Simulcast. Our computer security courses are developed by industry leaders in numerous fields including network security, forensics, audit, security leadership, and application security. Courses are taught by real-world practitioners who are the best at ensuring you not only learn the material, but that you can apply it immediately when you return to the office. All of SANS security courses are also offered at a government customer's desired location.
National Security Cyber Assistance Program The National Security Agency (NSA) / Information Assurance Directorate (IAD) has established a National Security Cyber Assistance Program wherein commercial organizations can receive accreditation for cyber incident response services. This accreditation in Cyber Incident Response Assistance will validate that an organization has established processes, effective tools and knowledgeable people with the proper skill set and expertise to perform cyber incident response for national security systems. The accreditation will only be issued to organizations that meet the criteria set forth in the NSA/IAD Accreditation Instruction Manual. For more information, please see the NSCAP webpage. Information Assurance