I'll Let Myself In: Tactics of Physical Pen Testers

Watch on YouTube

Show annotations

1,494,934

45,962

1,446

Genre: People & Blogs

Family friendly? Yes

Wilson score: 0.9679

Rating: 4.878 / 5

Engagement: 3.17%

Wild West Hackin' Fest

Subscribe | 25.7K

Shared December 11, 2017

Join us at Wild West Hackin' Fest 2019: https://www.wildwesthackinfest.com

Wild West Hackin' Fest 2017
Presented by Deviant Ollam: https://enterthecore.net/

Many organizations are accustomed to being scared at the results of their network scans and digital penetration tests, but seldom do these tests yield outright "surprise" across an entire enterprise. Some servers are unpatched, some software is vulnerable, and networks are often not properly segmented. No huge shocks there. As head of a Physical Penetration team, however, my deliverable day tends to be quite different. With faces agog, executives routinely watch me describe (or show video) of their doors and cabinets popping open in seconds. This presentation will highlight some of the most exciting and shocking methods by which my team and I routinely let ourselves in on physical jobs.
________________________________________________________________
While paying the bills as a security auditor and penetration testing consultant with The CORE Group, Deviant Ollam is also a member of the Board of Directors of the US division of TOOOL, The Open Organisation Of Lockpickers. His books Practical Lock Picking and Keys to the Kingdom are among Syngress Publishing's best-selling pen testing titles. In addition to being a lockpicker, Deviant is also a GSA certified safe and vault technician and inspector. At multiple annual security conferences Deviant runs the Lockpick Village workshop area, and he has conducted physical security training sessions for Black Hat, DeepSec, ToorCon, HackCon, ShakaCon, HackInTheBox, ekoparty, AusCERT, GovCERT, CONFidence, the FBI, the NSA, DARPA, the National Defense University, the United States Naval Academy at Annapolis, and the United States Military Academy at West Point.

His favorite Amendments to the US Constitution are, in no particular order, the 1st, 2nd, 9th, & 10th.

Deviant's first and strongest love has always been teaching. A graduate of the New Jersey Institute of Technology's Science, Technology, & Society program, he is always fascinated by the interplay that connects human values and social trends to developments in the technical world. While earning his BS degree at NJIT, Deviant also completed the History degree program at Rutgers University.



42:15

Defcon 19: DIY Non-Destructive-Entry

484K views

43:04

Inside the Mind of a Thief | Burglar Confessions

3.5M views

37:14

DEF CON 22 - Gene Bransfield - Weaponizing Your Pets: The War Kitteh and the Denial of Service Dog

329K views

1:03:09

Frank Abagnale: "Catch Me If You Can" | Talks at Google

5.2M views

13:36

Licensed Attorney Takes On IRS Phone Scammer

3.1M views

33:12

An FBI Negotiator’s Secret to Winning Any Exchange | Inc.

2.1M views

15:55

You try to cut my team in half so I outsourced your WHOLE department! | r/ProRevenge | #070

1.1M views

43:44

You’re Probably Not Red Teaming... And Usually I’m Not, Either [SANS ICS 2018]

200K views

18:02

Strange answers to the psychopath test | Jon Ronson

14M views

13:56

World Champion Safecracker Jeff Sitar Cracks Bank Vault in 5 Minutes by Touch

9.1M views

58:36

1929 Stock Market Crash and the Great Depression - Documentary

762K views

33:37

Black Hat 2013 - Exploiting Network Surveillance Cameras Like a Hollywood Hacker

703K views

20:17

Showing Scammers Their Own Demo Bank

1.2M views

14:28

Could You Pick The Unpickable Lock?

1M views

47:47

Former CIA Officer Will Teach You How to Spot a Lie l Digiday

6.3M views

49:10

Gig05 Pen Test War Stories Why my job is so easy and how you can make it harder Aaron Herndon

74K views