YoVDO

Bypassing Entra ID Conditional Access - A Deep Dive Into Device Authentication Mechanisms

Offered By: Black Hat via YouTube

Tags

Authentication Bypass Courses Reverse Engineering Courses TPM Courses Entra ID Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Dive deep into the internal workings of device authentication in Entra ID Conditional Access through this conference talk. Explore how attackers can potentially bypass device authentication without administrator privileges by interacting with device certificates and session keys protected by TPM. Learn about the discovered attack implemented through reverse-engineering Microsoft authentication library, which currently has no fix. Walk through the details of the device authentication flow, attack mechanisms for bypassing Conditional Access, and gain insights into defending against and detecting such attacks. Understand the implications for securing Microsoft cloud infrastructure and the challenges in applying appropriate access controls.

Syllabus

Bypassing Entra ID Conditional Access Like APT: A Deep Dive Into Device Authentication Mechanisms


Taught by

Black Hat

Related Courses

Don't Ruck Us Too Hard - Owning All of Ruckus AP Devices
nullcon via YouTube Attacking ADFS Endpoints with PowerShell
YouTube Practical HTTP Header Smuggling - Sneaking Past Reverse Proxies to Attack AWS and Beyond
Black Hat via YouTube 200+ Vulnerabilities in Android Phones
Hack In The Box Security Conference via YouTube Systems Applications Proxy Pwnage
44CON Information Security Conference via YouTube