SANS Korea 2011

Encouraged by the large number of Korean students attending SANS conferences worldwide we are pleased to announce SANS Korea 2011, 7-12 November 2011, taught by SANS' top instructors from the United States. This is a great opportunity to benefit from the world's best hands-on information security training and certification while saving on travel costs!

SANS Korea 2011 will be held at the Coex, World Trade Center in Gangnam-gu, Seoul and will include real-time Korean language translation. We are organizing this event in collaboration with our local Korean partner ITL. We also have ITL's Korean Language site SANS Korea 2011 for your convenience.

This pilot event will feature our core courses in Hacker Techniques, Exploits & Incident Handling and Web App Penetration Testing: 

SEC 504: Hacker Techniques, Exploits & Incident Handling (GCIH) taught by SANS Certified Instructor George Bakos

By helping you understand attackers' tactics and strategies in detail, giving you hands-on experience in finding vulnerabilities and discovering intrusions, and equipping you with a comprehensive incident handling plan, the in-depth information in this course helps you turn the tables on computer attackers. This course addresses the latest cutting-edge insidious attack vectors and the "oldie-but-goodie" attacks that are still so prevalent, and everything in between. Instead of merely teaching a few hack attack tricks, this course includes a time-tested, step-by-step process for responding to computer incidents; a detailed description of how attackers undermine systems so you can prepare, detect, and respond to them; and a hands-on workshop for discovering holes before the bad guys do. Additionally, the course explores the legal issues associated with responding to computer attacks, including employee monitoring, working with law enforcement, and handling evidence.  This challenging course is particularly well suited to individuals who lead or are a part of an incident handling team. Furthermore, general security practitioners, system administrators, and security architects will benefit by understanding how to design, build, and operate their systems to prevent, detect, and respond to attacks.

SEC 542: Web App Penetration Testing and Ethical Hacking (GWAPT) taught by SANS Certified Instructor Seth Misenar

Web applications are a major point of vulnerability in organizations today. Web app holes have resulted in the theft of millions of credit cards, major financial and reputational damage for hundreds of enterprises, and even the compromise of thousands of browsing machines that visited Web sites altered by attackers. In this intermediate to advanced level class, you'll learn the art of exploiting Web applications so you can find flaws in your enterprise's Web apps before the bad guys do. Through detailed, hands-on exercises and training from a seasoned professional, you will be taught the four-step process for Web application penetration testing. You will inject SQL into back-end databases, learning how attackers exfiltrate sensitive data. You will utilize cross-site scripting attacks to dominate a target infrastructure in our unique hands-on laboratory environment. And you will explore various other Web app vulnerabilities in depth with tried-and-true techniques for finding them using a structured testing regimen. You will learn the tools and methods of the attacker, so that you can be a powerful defender.

All of the above courses are associated with GIAC (Global Information Assurance Certification).
Please contact us at AsiaPacific@sans.org for further information. We look forward to connecting with you at SANS Korea 2011!