Last day to get an iPad Air w/ Smart Keyboard or Pixel 4a Smartphone with 5-6 day course registration! View details.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Multi-factor authentication bypass techniques you need to know about.

  • May 7, 2020. 1pm Sydney (AEST, UTC+10).Wednesday, May 06, 2020 at 8:00 PM PST (2020-05-07 03:00:00 UTC)
  • Bryce Galbraith

You can now attend the webcast using your mobile device!



The increasing use of multi-factor authentication (MFA) to secure accounts is a welcomed improvement over static username/password combinations, and it's long overdue. Unfortunately, there are several multi-factor authentication bypass techniques that can put virtually every organization's data at risk, both on premise and in the cloud. It is imperative that those responsible for securing sensitive data understand the impact of these attacks so they can build robust, defensible architectures that protect against these advanced adversary Tactics, Techniques, and Procedures (TTPs).

This talk will explore powerful techniques that can bypass most modern strong authentication methods:

  • Windows Active Directory authentication bypass
  • Web authentication bypass (e.g., Microsoft 365, AWS, VMware, Google, Slack, Dropbox, etc.)
  • Biometric bypass (e.g., Windows Hello)
  • Smart card bypass (e.g., US DoD's CAC)
  • Hardware token bypass (e.g., YubiKey)
  • Phishing through MFA (HTTPS/HSTS won't prevent this)
  • And how "Bring Your Own Device" (BYOD) can quickly become, "Bring Your Own Disaster".

Speaker Bio

Bryce Galbraith

As a contributing author of the internationally bestselling book Hacking Exposed: Network Security Secrets & Solutions, Bryce helped bring the secret world of hacking out of the darkness and into the public eye. Bryce has held security positions at global ISPs and Fortune 500 companies, he was a member of Foundstone's renowned penetration testing team and served as a senior instructor and co-author of Foundstone's Ultimate Hacking: Hands-On course series. Bryce is currently the owner of Layered Security where he provides specialized vulnerability assessment and penetration testing services for clients. He teaches several of the SANS Institute's most popular courses and develops curriculum around current topics. He has taught the art of ethical hacking and countermeasures to thousands of IT professionals from a who's who of top companies, financial institutions, and government agencies around the globe. Bryce is an active member of several security-related organizations, he holds several security certifications and speaks at conferences around the world.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.