STEAM-CIRT Incident Response Charter
This charter defines the mission, goals, and roles of the STEAM-CIRT with respect to IT Incident Response for Purdue University.
RUS-CERT Passive DNS Replication Service
RUS-CERT offers a passive DNS replication service that allows users to query historically, DNS records. This site, for example, allows abuse handlers to track down Purdue-owned IP addresses that have domain names pointed to them by third parties.
SANS Internet Storm Center
"Today, the ISC provides a free analysis and warning service to thousands of Internet users and organizations, and is actively working with Internet Service Providers to fight back against the most malicious attackers."
Virus Total allows users to submit via email malware and other suspicious files for analysis. Like Norman Sandbox, it can provide useful information about what actions the malware takes when it is executed.
OtherSTEAM-CIRT PGP Public key
The STEAM-CIRT's PGP Public Key can be found at http://www.tattoovisit.com/securePurdue/steam/steam-cirt.txt. Communications, such as STEAM Advisories, will be signed with this key for authentication purposes.