Anton Chuvakin

Biography

Dr. Anton Chuvakin, Ph.D., GCIA, GCIH, GCFA is a recognized security expert and book author. He currently serves as a Director of Product Management with LogLogic, a log management and intelligence company, where he is involved with defining and executing on a product vision and strategy. He was previously a Chief Security Strategist with netForensics, a security information management company.

He is an author of a book "Security Warrior" and a contributor to "Know Your Enemy II", "Information Security Management Handbook" and "Hacker's Challenge 3". In his spare time he maintains his security portal http://www.info-secure.org and several blogs, including one on O'Reilly.

Books

Security Warrior
by Cyrus Peikari, Anton Chuvakin
January 2004
$44.95 USD

(Read Reviews)

Articles

You need to enable JavaScript to view more than 15 articles by this author.

What Is Spyware
Publish Date: Nov. 22, 2005As business use of the internet has grown up, so has business abuse. From this incubator emerged spyware -- the grownup cousin to viruses and worms, whose intent is not simply to have fun at someone else's expense but to make money at someone else's expense. Anton Chuvakin looks at what spyware is, how it works, and what you can do to keep your systems free of spyware infection.

Blog

Anton Logging Tip of the Week #15: Fear and Loathing in Event 560 (and 562 and 567)

May 08 2008

Following the new "tradition" of posting a security tip of the week (mentioned here, here ; SANS jumped in as well), I decided to follow along and join the initiative. One of the bloggers called it "pay it forward" to... read more

Poll #8: What additional information is most useful for log analysis?

May 05 2008

So, my next poll is up - and it is fun: Which of the types of information are most useful when trying to make sense of a log entry? Vote here! Past polls: Poll #7 "What tools do you use... read more

Anton Security Tip of the Week #14: More access_log Fun: What Are You Not GETting?

March 12 2008

Following the tradition of posting a tip of the week (mentioned here, here ; SANS jumped in as well), I decided to follow along and join the initiative. One of the bloggers called it "pay it forward" to the... read more

Poll #7: What tools do you use for Windows Event Log collection?

March 07 2008

My next fun logging poll is here - please vote! It is about tools for centralized collection of Windows Event Log from servers and other systems. One of the somewhat surprising discoveries from my previous poll was that few people... read more

Top 11 Reasons to Analyze Your Logs

March 05 2008

As promised, here is another "Top 11 Reasons" which is about log analysis. Don't just read your logs (definitely don't just collect them); analyze them. Why? Here are the reasons: Seen an obscure log message lately? Me too - in... read more

Poll: What logs do you actually LOOK at?

March 05 2008

This is my 6th logging poll (vote here now!)- links to the previous five polls below. This one is deceptively similar to the #1 below, but it is not. This poll is What logs do you actually LOOK at? and... read more

Poll: What are your top challenges with logs and logging?

January 21 2008

This poll is especially fun: What are your top challenges with logs and logging? Vote here. Past polls were: Poll #4 "Who looks at logs in your organization?" (analysis) Poll #3 "What Do You Do With Logs?" (analysis) Poll #2... read more

My 2008 Security Predictions!

January 10 2008

I just have to start with this quote from Rich Mogul: "... Legions of armchair futurists slobber over their keyboards, spilling obvious dribble that they either predict every year until it finally happens or is so nebulous that they claim... read more

January 07 2008

Even though these posts are from my main blog ( see "Security Warrior" blog) and not from this one, the top posts would still be of interest to my readers here. So, enjoy! These are my top popular "Security Warrior"... read more

Poll: Who looks at logs in your organization?

December 19 2007

Here is my next poll about logs: Who looks at logs at your organization? Vote here! Also, my past polls and analysis are here. read more

Anton Security Tip of the Week #13: Into the Darkness ... or The Ominous World of Unix Binary Audit Logs

November 29 2007

Following the new “tradition” of posting a security tip of the week (mentioned here, here ; SANS jumped in as well), I decided to follow along and join the initiative. One of the bloggers called it “pay it forward” to the community. So, Anton Security Tip of the Day #13: Into… read more

Poll: What Do You Do With Collected Logs?

November 26 2007

Time for another fun logging poll: What Do You Do With Collected Logs? Vote here! This is my Logging Poll #3, links to past polls: Poll#2 “Why Collect Logs?” (vote here, results so far, my analysis) Poll #1 “Which Logs Do You Collect?” (vote here, results so far here, analysis here) read more

Ideal Log Management Tool?

November 05 2007

The idea came from Jeremiah Grossman (here) when he described “The Best Web Application Vulnerability Scanner in the World” thus: “Within a few moments of pressing the scan button it’ll find every vulnerability, with zero false positives, generate a pretty looking report, and voila you’re compliant with GLBA, HIPAA, and… read more

Top 11 Reasons to Secure and Protect Your Logs

November 02 2007

Following my now-famous Top 11 Reasons to Collect and Preserve Computer Logs and Top 11 Reasons to Look at Your Logs, here is the promised “Top 11 Reasons to Secure and Protect Your Logs” Let’s review why you are reviewing logs. Will logs that might have been changed by somebody,… read more

Poll: Why Do You Collect Logs?

October 31 2007

The previous poll (vote here, live results here, analysis here) proved to be a success so the next one is here. This time the question is: “Assuming that you centrally COLLECT system, network or security logs from their originating sources, what is THE MAIN reason for doing it?” Vote on! Results in… read more

Biography

Books

Articles

Blog

Buy Direct and Save