One Week Left to Get an 11" iPad Pro with Apple Pencil w/ OnDemand Training


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Elevators as Security Risks... What Goes Up May Let You Down

  • Tuesday, February 07, 2017 at 3:00 PM EST (2017-02-07 20:00:00 UTC)
  • Deviant Ollam

You can now attend the webcast using your mobile device!



Abstract: Many of us are familiar with buildings that restrict access by means of locks, keys, or other physical tokens like RFID cards. Access control systems are common in the modern landscape... controlling entry, egress, and segmenting large buildings into zones of tailored access. Many of you have no doubt seen elevator systems leveraged to act as part of this type of security... with specific floors inaccessible to those who lack appropriate credentials. However, physical penetration testers who are subject matter experts in hoists and lifts often use elevators to bypass building security systems and gain easy access to floor that are meant to be locked-out. If you have the knowledge to make the system behave in unexpected ways, access to all floors can be yours... This webcast will show you how an elevator is virtually no different than a staircase as far as building security is concerned!

Speaker Bio

Deviant Ollam

Deviant Ollam - While paying the bills as a security auditor and penetration testing consultant with The CORE Group, Deviant Ollam is also a member of the Board of Directors of the US division of TOOOL, The Open Organisation Of Lockpickers. His books Practical Lock Picking and Keys to the Kingdom are among Syngress Publishing's best-selling pen testing titles. At multiple annual security conferences Deviant runs the Lockpick Village workshop area, and he has conducted physical security training sessions for Black Hat, DeepSec, ToorCon, HackCon, ShakaCon, HackInTheBox, ekoparty, AusCERT, GovCERT, CONFidence, the FBI, the NSA, DARPA, the National Defense University, the United States Naval Academy at Annapolis, and the United States Military Academy at West Point. His favorite Amendments to the US Constitution are, in no particular order, the 1st, 2nd, 9th, & 10th.

Deviant's first and strongest love has always been teaching. A graduate of the New Jersey Institute of Technology's Science, Technology, & Society program, he is always fascinated by the interplay that connects human values and social trends to developments in the technical world. While earning his BS degree at NJIT, Deviant also completed the History degree program at Rutgers University

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.