John Strand currently is a Senior Security Researcher with his company Black Hills Information Security, and a consultant with Argotek, Inc for TS/SCI programs. He also teaches the SANS 504 "Hacker Techniques, Exploits and Incident Handling," 517, "Cutting Edge Hacking Techniques," and 560 "Network Penetration Testing" classes as a Certified SANS Instructor.
John started the practice of computer security with Accenture Consulting in the areas of intrusion detection, incident response, and vulnerability assessment/penetration testing. He then moved on to Northrop Grumman specializing in DCID 6/3 PL3-PL5 (multi-level security solutions), security architectures, and program certification and accreditation. John is also a contributing author to Nagios 3 Enterprise Network Monitoring. He has a Masters degree from Denver University, and is currently also a professor at Denver University. In his spare time he writes loud rock music and makes various futile attempts at fly-fishing.
Do you have a question for our experts?
Contributions from John Strand, featured expert
- How to detect input validation errors and vulnerabilities
- How to prevent network denial-of-service attacks
- How to prevent and build protection against online identity theft
- Can secure USB devices prevent man-in-the middle attacks
- What are today's antivirus software trends?
- The telltale signs of a network attack
- Is there a spy on my mobile device?
- When should new browsers be adopted in an enterprise?
- How to detect keyloggers
- How are companies removing malware from blogs?
- Will Google Chrome enhance overall browser security?
- How can 419 scam emails and backscatter spam be stopped?
- How to prevent SSH brute force attacks
- How to secure a website containing badware (banner82)
- How easily can spyware be placed on a mobile phone?
- Does cloud-based antivirus provide better malware detection?
- To prevent cross-site scripting, should specific words and characters be rejected?
- What can encoded syntax attacks do to Web applications?
- What are the basics of a Web browser exploit?
- Are daily antivirus scans in XP Normal Mode effective?