I had another physical pentest. I prepared for this one for 3 months. I recon’ed the target and prepared my story, then I got to work making sure that when I got there it would go as smooth as it could possible be.
My customer specifically asked for an “overt” assessment. That means that I had to walk through the front door to achieve my target.
Thanks to the preparation and the countless phone calls and emails, I performed the fastest pentest to date. From the minute I step in the building until I was inside the server room, it took 9:19 minutes. The security guard was even kind enough to open the server room for me.
Since this is clearly a security issue I cannot post pictures. However I will say that I still get shocked when I see how poorly trained some security personnel are.