Description

NOTICE to readers of this draft document: Criticisms and suggestions are strongly encouraged. If you are actively engaged in cyber forensics, red teams, blue teams, technical incident response, vulnerability research, or cyber attack research or operations, please help make sure this document is as good as it can be. Send criticism/comments/sugges tions to John Gilligan <jgilligan@gilligangro upinc.com> as well as to cag@sans.org by March 25, 2009