Recently, I put together a presentation called “I’ll Let Myself In: Tactics of Physical Penetration Testers” which highlights the means by which my team gains entry to target facilities. Despite being known in the security community as a lockpicking guy, most of my covert entry work does not involve lockpicking… at least not as a primary vector.
Much of the time, the first things we try are quick-entry techniques like lock bypassing and exploiting common flaws in building construction and access control system configuration. This presentation showcases many of those tactics and offers up ideas for solutions and mitigations that are easy and within budget.
If you have questions about covert entry, physical security, or penetration testing… my team and I are always happy to speak with you.
The slides from my talk can be found here.