π§ Hunting threats on Linux? Come learn it right. I'm teaching FOR577 at SANS Austin, June 22β27 β IR, threat hunting, and GLIR cert prep. Early-bird ends May 7! ππΈ
π sans.org/cyber-security-traiβ¦ #SANS #FOR577 #DFIR #Linux
1
1
2
176
29 Sep 2025
2 more days to get the early-bird discount for one of my all-time favorite conferences, #SANS #DFIRCON in Miami in Nov. There are a bunch of hands-on workshops on Sun, 16 Nov, lots of evening events during the week #FOR577 my last in 2025. @sansforensics sans.org/cyber-security-courβ¦
2
6
1,765
30 Jun 2025
Learn to hunt and respond to threats targeting Linux systems using real-world tactics β including 23 hands-on labs.
Take FOR577 at #DFIRSummit w/ @tazwake!
π₯ Save $600 w/ code SUMMIT*600 when you register and pay by July 11!
π Learn More & Register: sans.org/u/1zv0
6
1,959
29 Apr 2025
Linux touches every part of our networks. Our routers, switches, and firewalls likely run some flavor of Linux or Unix. Join me in London in July for the newly updated #SANS #FOR577 where we'll learn how to investigate attacks on Linux systems.
sans.org/cyber-security-traiβ¦
1
2
270
In just over five and a half hours, there will be a new batch of #Linux incident response coin winners at
#SANSLondon.
After five days of hands-on learning, on #FOR577, they now face the capstone challenge, and the winners get the coin.
#DFIR @sansforensics #incidentresponse
2
3
25
1,118
18 Jan 2025
I just posted a Handler's Diary, I've released a python script to find Linux files with the immutable bit set. #FOR577 @sans_isc @sansforensics isc.sans.edu/diary/New tool β¦
1
2
8
928
I have a bit of sad news - the #FOR577 class scheduled for Munich in March has been cancelled.
I appreciate it is 4 mo away so people might have been planning to attend but not yet booked. If this is the case, please reach out to SANS & see if it is possible to get it relisted.
2
345
It is a gorgeous morning here at #DFIRCON Miami, ahead of the final day of #FOR577.
However, I *think* we will be back here next year, so if you have ideas for good hands-on workshops or want to do awesome #cyber training, make sure you follow @sansforensics for announcements.
1
1
16
1,382
30 Oct 2024
Join @tazwake at #DFIRCON in Miami π΄ to take #FOR577! FOR577 will teach you to detect, hunt, & respond to attacks targeting #Linux systems. With 23 labs youβll learn to track attackers, analyze movements, & secure your enterprise.
π Secure your spot: sans.org/u/1xGA
1
8
1,520
It is the capstone challenge here at #DFIRPrague as five teams of #Linux forensic experts compete to win one of the five awesome challenge coins available for the #FOR577 class!
Thank you to @SANSEMEA & @sansforensics for an awesome week!
π sans.org/for577
1
9
2,654
Good morning, Salt Lake City!
Today, the @sansforensics DFIR Summit switches to training, and some incredible courses will be starting shortly.
#FOR608 has the new GEIR certificate available, and #FOR577 is perfect for anyone investigating #Linux intrusions.
#dfir
1
1
16
1,769
16 Aug 2024
π‘οΈAre you ready to dive deep into the world of Linux incident response? Join @tazwake for #FOR577 at SANS #DFIREurope24 where he will equip you with the skills to hunt down threats and protect critical systems.
Register for #DFIREurope24 here: sans.org/u/1xgR
3
6
1,522
Most (if not all) #Linux Distros have moved to the Journal with their latest versions. This is a LinkedIn article on key points for DFIR.
If you'd like to know more, check out FOR577 from SANS (sans.org/for577) - attend in-person or live online!
linkedin.com/pulse/linux-incβ¦
1
4
11
503
26 Jun 2024
.#FOR577 teaches how to identify, analyze, and respond to attacks on Linux platforms, using threat hunting techniques to detect stealthy attackers.
Take it with @jclausing at the #DFIRSummit
Register now: sans.org/u/1x6R
#DFIR #LinuxForensics
5
7
1,275
28 Apr 2024
#FOR577 teaches the skills to identify, analyze, & respond to attacks on #Linux platforms & how to use #threathunting techniques to find stealthy attackers
Take it with @jclausing at @SANSInstitute Rocky Mountain in June
Register here: sans.org/u/1vgv
6
13
2,827
24 Apr 2024
The #FOR577 Linux course addresses today's incidents by teaching the hands-on #incidentresponse & #threathunting tactics & techniques to combat real-world breach cases. 23 labs CTF
Take it with @jclausing in San Diego
Register here: sans.org/u/1vgA
@tazwake
3
6
1,940
20 Apr 2024
#FOR577 teaches the skills to identify, analyze, & respond to attacks on #Linux platforms & how to use #threathunting techniques to find stealthy attackers
Take it with @jclausing at @SANSInstitute Rocky Mountain in June
Register here: sans.org/u/1vgv
1
4
12
2,563
7 Apr 2024
"It is essential to understand how to collect and analyze digital evidence from Linux systems to determine the extent of the damage and identify the root cause of an incident." @tazwake
Take the #FOR577 course with @jclausing in San Diego
Register here: sans.org/u/1vgA
6
25
4,941
21 Mar 2024
"All cybersecurity defenders need the knowledge to deal with attacks on every platform. This means to understand how to collect and analyze digital evidence from Linux systems" @tazwake
Take the #FOR577 course with @jclausing in San Diego
Register here: sans.org/u/1vgA
3
16
2,177
