Publications

  • Books
      • Orebaugh, A., Pinkard, B. Nmap in the Enterprise, Syngress Publishing, ISBN: 1597492418, Feb. 2008.
      • Orebaugh, A., et.al. How to Cheat at Configuring Open Source Security Tools. Syngress Publishing, ISBN: 1597491705, 2007.
      • Orebaugh, A., et.al. Wireshark & Ethereal Network Protocol Analyzer Toolkit, Syngress Publishing, ISBN: 1597490733, 2006.
      • Orebaugh, A., Biles, S., Babbin, J., Snort Cookbook, O’Reilly Publishing, ISBN: 0596007914, 2005.
      • Orebaugh, A., Rash, M., Babbin, J. and Pinkard, B., Intrusion Prevention and Active Response: Deploying Network and Host IPS, Syngress Publishing, ISBN: 193226647X, 2005.
      • Orebaugh, A., Ethereal Packet Sniffing, Syngress Publishing, Boston, MA., ISBN: 1932266828, 2004.
  • Refereed Papers
      • Orebaugh, A., Allnutt, J., Classification of Instant Messaging Communications for Forensics Analysis, International Journal of Forensic Computer Science (IJoFCS), IJoFCS (2009) 1, 22-28.
      • Orebaugh, A., Data Mining Instant Messaging Communications to Perform Author Identification for Cybercrime Investigations, International Conference on Digital Forensics & Cyber Crime (ICDF2C), 2009.
      • Orebaugh, A., Proactive Forensics, Journal of Digital Forensic Practice, Volume 1, Issue 1, March 2006.
      • Orebaugh, A. An Instant Messaging Intrusion Detection System Framework: Using Character Frequency Analysis for Authorship Identification and Validation. IEEE International Carnahan Conference on Security Technology (ICCST). 2006.
  • Invited Talks
      • Orebaugh, A. Psychology, Human Factors, and Information Security, Keynote address, University of Virginia Local Support Partners Conference, 2008.
      • Orebaugh. A. Identifying Authors of Instant Messaging Conversations, The Mid-Atlantic Institute for Applied Network Security Forum, 2008.
      • Orebaugh, A. Testing Intrusion Detection Systems, ISSA NOVA, 2007.
      • Orebaugh, A. Deep Packet Inspection, SANS, 2004.
      • Orebaugh, A. The Importance of Information Security Certifications, FISSEA, 2004.
      • Orebaugh, A. Wireless: Ready or Not, NEXPO 2004.
  • Magazine Articles
      • Orebaugh, A. Identifying and Characterizing Instant Messaging Authors for Cyber Forensics, IATAC Magazine, Information Assurance Technology Analysis Center, Volume 12, Number 3, 2009.
      • Orebaugh, A.  Extreme Makeover: Desktop Security Edition. ISSA Journal. 2008.
      • Orebaugh, A. Electronic Voting Security. IANewsletter. Information Assurance Technology Analysis Center. Volume 11, Number 2. 2008.
      • Orebaugh, A. NIST NVD & SCAP: Modernizing Security Management. IANewsletter. Information Assurance Technology Analysis Center. Volume 11, Number 1. 2008.
      • Orebaugh, A. NIST Publications: Guidance to Improve Information Security. IANewsletter. Information Assurance Technology Analysis Center. Volume 11, Number 1. 2008.
      • Orebaugh, A. et al., Intrusion Prevention and Active Response: Implementing an Open Source Defense. SysAdmin Magazine. 2005.
      • Orebaugh, A. Special Report: Cognitive Computing and Machine Learning. IANewsletter. Information Assurance Technology Analysis Center. Volume 6, Number 4. 2004.
  • Industry Standards and Regulatory Papers
      • Waltermire, David, et.al.,  NIST Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.2 Rev 2. Special Publication 800-126 rev 2, 2011. (Technical Reviewer)
      • Waltermire, David, et.al.,  NIST Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.1 Rev 1. Special Publication 800-126 rev 1, 2011. (Technical Reviewer)
      • Orebaugh, A., et.al., NIST Information Security Continuous Monitoring for Federal Information Systems and Organizations. DRAFT Special Publication 800-137, 2010.
      • Waltermire, David, et.al.,  NIST Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.0. Special Publication 800-126, 2009. (Technical Reviewer)
      • Quinn, Stephen, et.al.,  NIST Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.0. Special Publication 800-126, 2009. (Technical Reviewer)
      • Orebaugh, A., et. al., NIST Technical Guide to Information Security Testing and Assessment, Special Publication 800-115, 2008.
      • Orebaugh, A., et. al., NIST Guide to SSL VPNs, Special Publication 800-113, 2008.
      • Mell, P. Kent, K. NIST Guide to Intrusion Detection and Prevention Systems. Special Publication 800-94, 2007. (Technical Reviewer)
      • Souppaya, M., Kent, K., NIST Guide to Computer Security Log Management. Special Publication 800-92, 2006. (Technical Reviewer)
      • Orebaugh, A., et. al., NIST Guide to IPSEC VPNs. Special Publication 800-77, 2005.