Physical Pentesting Tools 2021

Another tool to add to your tool box would be about a 18" piece of simple weed eater string. Super easy to conceal. It becomes your go to tool when you have a door where the striker is covered by something as a metal plate. Normally a shove tool or the painters tool you showed would work if the plate was not there however the plate now makes those tools useless. Simply thread the weed eater string down behind the plate, rock it back and forth while pulling gently and you will defeat the lock and open the door.

robertfling

What if someone recognizes you during a physical pentest, like "Oh you are the cybermentor, I am a huge fan of yours, you are pentesting here?" 😅

triktoYT

Obligatory comment for making YouTube promote this legend!

activeturtle

Great video! I did about 7 physical pentests this year and some of these tools would have been super handy. It’s always tough to know what your gonna run into. Social engineering and being confident about who I was pretending to be helped in being successful on most of them.

grzzlymack

This is like my dream career, breaking into buildings legally. I am in love

debonairhacker

Nice video TCM. I recently did my first physical pentest, it was a fun one 😁

andyli

Appreciate all that you do for the community, you’re a rockstar

airbourne

It's worth noting that a roll of 35mm film can be used as an "over-the-door (top)" tool if you do not have an "under the door" tool. Naturally, it depends on the door. Also, it's probably a good idea to ensure you check the latch assembly to ensure that you can exit without the door locking one way (think roof access).

MarkAnthonyHenderson

Thank you, Heath! I always appreciate your realistic and practical videos. I agree when you say that most other youtubers end up trying to sell us Hack5 gear, and most aren't going to be used. Your videos are truly a breath of fresh air.

PwnerJoe

This is the type of video you have to comment while watching so he gets that awesome engagement :)

davinetto

Awesome video TCM. I want to get a lock pick practice set so I can start learning how to lockpick.

dropcake

This is super cool to see. I am curious what Hak5 gear you'd use as well

InfiniteLogins

how do I get into the field? where does a more than average person start and I'm serious about it. thanks for your time been watching for a while now. happy new year

prodbydramatic

Hi Heath. Great video and very useful. I just completed your course on ethical hacking on Udemy. Just wanted to say a huge thank you! I have learned a ton already based on your course and this helps as well. I begin my security journey professionally in February 😁

Rob_Huskett

Have you ever considered using a device like a pwn phone on a pentest? In my experience its almost undetectable which is useful in the field and while it will never take over the role of a laptop for exfiltration and post-exploitation purposes it does in my eyes fit the best for infiltration. Plus you feel straight outta Watch Dogs!

jagernet

I used the air can trick on a door in my office. Very easy and very effective!

AlexTushinsky

yea... rfid badges, silent alarms. I doubt they did pen testing in the 80's and early 90's but If they did it would have been a walk in the park.

TheKATON

Great video. Just surprised you didn’t mention a Proxmark3 or something similar for badge access and sort lol

victorslinv

The crossover from pen testing to physical pen testing will never cease to seem odd to me. I feel like certain LE/MIL backgrounds lend themselves better to the pursuit of physical pen testing personally but I dont think that shout deter people from looking to get into it as a line of work. I will say it seems theres alot of unnecessary gatekeeping in physical pen testing as well, often hiding behind alot of mostly useless pay to play certifications for what could otherwise be a trade.

ethgkhn

Hey TCM, been following you since very long when i fell into the ocean of info sec. Just wanted to request you to please make a video on the OSCP 2022 CHANGES !!!

daryldixon