Training
Featured CourseView All Courses
Get a Free Hour of SANS Training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
Cloud Security Training, Courses, and Resources
Can't find what you are looking for?

Let us help.

Contact us
Community Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely.

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Talk With an Expert
Talk With an Expert

Modern Identity Providers Under Attack: Tactics, Techniques, Detections and Mitigations

  • Wed, Nov 19, 2025
  • 7:00PM - 8:00PM SGT
  • English
  • Anurag Khanna
  • Technical Presentation
Login to register
Webcast Hero

As identity has become the new perimeter, threat actors techniques to target Identity has evolved. Attackers are shifting focus from just stealing credentials to compromising the Identity Providers (IdPs) themselves. In this talk, we will share frontline experiences and lessons learned combating attacks on cloud-based identity providers, focusing on Entra ID, ADFS, Okta etc. We will talk about how modern adversaries exploit IAM misconfigurations, abuse trust relationships, register rogue domains or federation providers, manipulate multi-tenant apps, subvert SAML flows, and even bypass MFA protections. We’ll dig into real tactics, detection methods, and defensive playbooks for securing these high-value targets. This talk is valuable for both red and blue teamers: Red teamers will gain insight into current techniques used by threat actors, while blue teamers will learn how to detect and defend against these emerging threats.

Meet Your Speaker

Anurag Khanna
Anurag Khanna

Anurag Khanna

Director, Incident Response

Anurag is a SANS Certified Instructor, GIAC Security Expert #97, and Director of Incident Response at CrowdStrike. He teaches SEC504 and leads frontline DFIR investigations across Asia Pacific. He is a speaker at Black Hat, Virus Bulletin, and BSides.

Read more about Anurag Khanna

Related events

View all events

SANS November Singapore 2025

Join SANS November Singapore 2025 for expert-led, hands-on cybersecurity training. Build practical skills, stay ahead of emerging threats, and connect with Asia’s thriving cyber community in one of the region’s most dynamic tech hubs.

Training Event
Singapore, Skyscrapers and Bright Colors
  • Mon, Nov 17 - Sat, Nov 22, 2025 • SGT
  • Singapore, SG & Virtual (SGT)
  • 11 Courses
View event detailsRegister