Efficiently Deducing IDS False Positives Using System Profiling

It is all too often modern day security analysts are plagued with security events that are irrelevant to a targeted host. Current applications and technologies attempt to eliminate these events by means of manually disabling and altering IPS/IDS rulesets. While this technology works, it does not...

By

Michael Karwaski

November 9, 2009

All papers are copyrighted. No re-posting of papers is permitted

Related Content

Cybersecurity Insights

November 26, 2024

The 20 Best Cybersecurity Podcasts

Whether you're a security professional or just someone who wants to learn more about cybersecurity, these podcasts are sure to keep you informed.

Why SANS - Blog - Zero Trust - Best Practices for Securing Your Network with Zero Trust Network Access_340 x 340.jpg

Cybersecurity Insights

August 16, 2024

Best Practices for Securing Your Network with Zero Trust Network Access

Zero Trust Network Access has emerged from the rapidly evolving world of cybersecurity as a critical strategy for protecting networks.

Cybersecurity Insights

December 7, 2020

SANS Zoom Backgrounds

Download our Zoom backgrounds!