carson@container:/sec/ - Protection is more than tools. (bash)

Carson Gee

# you@container:/sec/ $



My education and interests have always involved aspects of security. I’ve been involved in digital forensics, intrusion detection and prevention, network access control, vulnerability assessment, and configuration auditing and standardization. There are thousands of security tools that change near daily, but when it comes down to it, information assurance is the process of risk management.

My approach is to ask what the availability, integrity, and confidentiality properties of a system are, measuring the risk, and creating processes to address those needs. Not simply “You need to install a brand X firewall”. Because of that approach and the wide set of systems I’ve seen, I’m familar with many of the security tools around, but primarily as a side effect of the process.

Firewall and VPN

  • Secure Network Architecture and Design
  • Juniper Secure Access SSL VPN
  • Juniper Firewalls ( Netscreen 5400 and SSG20 )
  • Juniper NSM incuding NSM Express
  • Check Point SecuRemote and SecureClient VPNs
  • Check Point VPN-1 and Firewall-1
  • Check Point Secure Platform
  • Nokia IPSO Firewalls ( IP1200 series and IP700 series )
  • Firewall clustering and high availability on Juniper and Nokia appliances.
  • Dell Sonicwall
  • Sonicwall Global VPN
  • AWS Virtual Private Gateway

Intrusion Detection and Prevention

  • Cisco CSA — Host Based
  • Motorola AirDefense — Wireless Network
  • Enterasys Dragon — Network Based
  • Sourcefire Snort — Network Based

Authentication, Authorization, and Accounting

  • Node Passport OAuth
  • Django Python Social Auth
  • Shibboleth
  • Microsoft Active Directory
  • OpenLDAP
  • Kerberos
  • Cisco Secure ACS (TACACS and RADIUS)
  • FreeRADIUS

Vulnerability Assessment and Penetration Testing

  • ISS Internet Scanner
  • Tenable Nessus
  • OpenVAS
  • eEye Retina
  • NMap
  • WebScarab
  • Metasploit
  • Rapid7 Nexpose

Antivirus and Configuration Standards

  • Symantec Antivirus Server & Client
  • Sophos Antivirus Server & Client
  • Altiris SecurityExpressions
  • Microsoft System Center Configuration Manager
  • Network Security
  • Cryptography
  • Computer and Network Forensics
  • Information Assurance
  • SANS Web Application Security
  • Juniper Netscreen Firewall and VPN Training
  • Juniper Netscreen Security Manager Training
  • Juniper Secure Access SSL VPN Training
  • SANS IPv6 Essentials
# you@container:/sec/ $