Challenge: MFA ... All Day Every Day

FREE

National Cybersecurity Awareness Month has several themes, one of which is Multi-Factor Authentication (MFA). This MFA challenge will have you analyze a log and identify the potential MFA attack. The goal is to review suspicious requests and identify how MFA can be attacked in real-world use cases.

Time

1 hour

Difficulty

Beginner

NEED TO TRAIN YOUR TEAM? LEARN MORE

Join over 3 million cybersecurity professionals advancing their career

Required fields are marked with an *

View all SSO options

Already have an account? Sign In »

Course Content

Module 1: Examine

Reviewing a MFA attempt

Course Description

MFA from an DFIR view!

In this NCAM weekly challenge, you will analyze a web server log reviewing an MFA attempt. This challenge aims to look beyond the basics of MFA being a recommendation and critically examine why proper implementation is also essential. We all know that MFA is an excellent security control, but let’s see why it is vital to implement it correctly!

1.) How is the application verifying the user? 2.) What is the value the user is submitting? 3.) How could a user capture this information? 4.) What is the bypass being used?

CySeeker Peculiar

Who is this for:

Early career practitioners. Individuals new to cybersecurity may be challenged but the difficulty rating on this challenge is relatively low. We encourage the use of any internet resources, community/colleague assistance in completion of the challenge.

Are write ups permitted?

Yes, write ups are permitted; however, please do not post answers directly. All write ups should include an appropriate link back to Cybrary and the Cybrary Course.

What resources are available to help solve this challenge?:

Online search, community, colleagues or fellow practitioners.

Instructed By

Matthew Mullins

Technical Manager, Red Team

Instructor

Provider

Certificate of Completion

Complete this entire course to earn a Challenge: MFA ... All Day Every Day Certificate of Completion