If you have a secretary making your calls, you must be doing something right, or so they would assume. I think social engineering will be a big part of 1. Penetration Tests include lock picking doors, hopping fences, piggy backing, bypassing physical access controls, or social engineering; A Physical Security Test is a non-invasive, comprehensive assessment of all the Physical Security controls in place at a facility or location. If you continue to use this site we will assume that you are happy with it. Their focus is typically on their network security and they spend large amounts of money verifying their external network presence is secure. Todd Towles Dec 09 Thread continues
The goal of the test is to demonstrate the existence or absence of deficiencies in operating procedures concerning physical security.
Physical Penetration Testing
Frank Knobbe Dec 09 RE: Stand near the door and look like a 'little boy lost'. Try to find targets: They will spend millions of dollars on the best firewalls, intrusion prevention systems, and software that scans incoming messages for viruses. Electronic key cards-magnetic, RFID, proximity, etc. Their focus is typically on their network security and they spend large amounts of money verifying their external network presence is secure.