Get the Skills you need from Home with SANS OnDemand


To attend this webcast, login to your SANS Account or create your Account.

How hackers run circles around our defenses.

  • Wednesday, March 28th, 2018 at 10:30 AM EDT (14:30:00 UTC)
  • Bryce Galbraith
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

You can now attend the webcast using your mobile device!


Sun Tzu famously stated, know the enemy, in The Art of War. This timeless truth is as relevant today as it was when written in the 5th century B.C. but how well do defenders really know the enemy?

The enemy loves three things about us:

- Our ignorance

- Our overconfidence

- Our apathy

When they know more than we do, we lose.

When we are overconfident in our defenses, we lose.

When we fail to keep up the fight, we lose.

This presentation will explore several of the Tactics, Tools, and Procedures (TTPs) employed by some of today's most sophisticated attackers to handily bypass the very defenses most organizations rely upon.

You will see how they:

- Bypass strong authentication (e.g., 2FA/MFA, smart cards, biometrics, etc.)

- Bypass Next-Generation Firewalls (NGFW) and perimeter defenses

- Bypass end-point security suites

- Bypass encryption

- Compromise your Windows Active Directory, UNIX environment, virtual machine environment (VME), cloud services (e.g., IaaS, PaaS, SaaS), network and security devices, and virtually every other platform.

If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle.

― Sun Tzu, The Art of War

Bryce Galbraith is an instructor for our most popular training course, SANS SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling.

Speaker Bio

Bryce Galbraith

As a contributing author of the internationally bestselling book Hacking Exposed: Network Security Secrets & Solutions, Bryce helped bring the secret world of hacking out of the darkness and into the public eye. Bryce has held security positions at global ISPs and Fortune 500 companies, he was a member of Foundstone's renowned penetration testing team and served as a senior instructor and co-author of Foundstone's Ultimate Hacking: Hands-On course series. Bryce is currently the owner of Layered Security where he provides specialized vulnerability assessment and penetration testing services for clients. He teaches several of the SANS Institute's most popular courses and develops curriculum around current topics. He has taught the art of ethical hacking and countermeasures to thousands of IT professionals from a who's who of top companies, financial institutions, and government agencies around the globe. Bryce is an active member of several security-related organizations, he holds several security certifications and speaks at conferences around the world.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.