All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Cybersecurity Professional's Memorable Physical Penetration Test Experience

By

MBCook

2mo ago· 18 min readenNews
Bagel score 90 of 100
90/100
Golden Brown
Bagelometer

The bagel they save for the regulars. Don't skim, savour.

Score90TypenewsSentimentpositive

Summary

A cybersecurity professional recounts their most entertaining physical penetration test experience, describing how they successfully breached a company's physical security despite multiple layers of protection including cameras, security personnel, and access controls. The article details their week-long on-site engagement involving social engineering, physical security testing, and internal penetration testing for a company with several hundred employees and secured buildings.

Key quotes

· 4 pulled
This week has been… eventful. And when I say eventful, I can say this has been the funniest pentest I have ever been on in my life.
A company contracted us for a series of pentests, the whole enchillada. Internal, external, phishing, and… physical.
We have several buildings, with employees and security and cameras and shit, which means that the buildings were secured.
There is a few hundred employees, apparently, but the fact is that we had one week on-site for three of the tests: Social engineering, physical, and the internal penetration test.
Snippet from the RSS feed
This week has been… eventful. And when I say eventful, I can say this has been the funniest pentest I have ever been on in my life. Let me tell you about it!

You might also wanna read

How Blindness Led a Brazilian Hacker to Cybersecurity and Accessibility Advocacy

A personal narrative from Juan Mathews Rebello Santos, the first blind hacker in Brazil, describing how losing his sight led him to a career

hackernoon.com·21h ago

Building a Vulnerable SSH Lab to Learn Real-World Attack Techniques

This article guides readers through setting up and using VulnSSH, a purposely insecure SSH environment inside a local pentest lab, to learn

infosecwriteups.com·1d ago

AI voice cloning scams surge, costing Americans millions; here's how to stay safe

The article reports on the rise of AI-powered "voice cloning" scams, where scammers use artificial intelligence to replicate a person's voic

mercurynews.com·2d ago

Content Security Policy Fundamentals for Penetration Testers

This article provides a comprehensive introduction to Content Security Policy (CSP) for penetration testers and security professionals. It e

kayssel.com·3mo ago

Security Researcher Discovers Critical Data Vulnerability in Sports Insurer Portal, Faces Legal Threats Instead of Cooperation

A diving instructor and platform engineer discovers a critical security vulnerability in a sports insurer's portal during a dive trip, expos

dixken.de·3mo ago

Blog Post Temporarily Removed Due to Request, Author Points to Data Security Article

A blog post has been temporarily taken down due to an unspecified request, with the author hinting readers to guess the reason. The author p

mrbruh.com·3mo ago