search menu icon-carat-right cmu-wordmark

Posts by Sid Faber

Flow Analytics for Cyber Situational Awareness

Flow Analytics for Cyber Situational Awareness

• Blog
Sid Faber

It's the holiday season, a traditionally busy time for many data centers as online shopping surges and many of the staff take vacations. When you see abnormal traffic patterns and overall volume starts to rise, what is the best way to determine the cause? People could be drawn to your business, and you will soon need to add surge capacity, or maybe you are in the beginnings of a denial-of-service attack and need to contact...

Read More

"Network Monitoring for Web-Based Threats" Released

• Blog
Sid Faber

The CERT Network Situational Awareness (NetSA) team has published an SEI technical report on monitoring web-based threats. The report draws on related work such as OWASP but comes from a different point of view. While OWASP is focused on developing web applications securely, this report focuses more on situations where you don't have that control, but you need to protect servers and clients from web-based threats. The report may help you answer the following...

Read More
Conficker.C: How Many Are There?

Conficker.C: How Many Are There?

• Blog
Sid Faber

Hello, Sid Faber from the Network Situational Awareness group at CERT. Like just about everyone else, we've been following the Conficker worm for a while and thought some updated stats on the Conficker.C variant might be useful....

Read More

Contact the Author

Sid Faber

SEI Digital Library

SEI Publications

Visit the SEI Digital Library to see other publications by Sid Faber

View publications