Im a Electronic security tech. They messed up the codes and lost access. I got a ladder, lifted a ceiling tile, and used a umbrella to lift the free access handle inside. The bank manager was horrified.

I was not expecting to watch a 45 minute video about an unrelated field, yet here I am... both transfixed and deeply worried.

Back in my university days, I used to go around and help people break into their dorms when they were locked out. Front desk would give you your first lockout for free, and $50 per incident after that. I’d go around for $15. Bent dry cleaning hanger, paracord and my phone camera on selfie mode and I could get in in seconds from underneath. Always blew people away how fast and easy it was

The "look/act like you're supposed to be there" thing is so very effective. I used to do fire performance at big festivals, and I lost my credentials once (they're supposed to be on your wrist, but costuming doesn't always allow that) and when they stopped me at the gate, I was in costume and just told them I was a performer and I'd lost my credentials. They balked at first, but when I asked if they wanted to explain to the performance director why their performer wasn't showing up to his scheduled sets, they let me in. Okay, costuming seems like a pretty clear indication someone's supposed to be there, even amongst festival goers, full body paint is generally farther than most people would go dressing up.. so I tried it in just black cargo shorts, a black tee shirt, and a disinterested, busy look on my face, found a case of water to put on my shoulder, and walked through security checkpoints without anyone saying one word to me and I was backstage. The specific clothes to wear in order to look like you're supposed to be working there might be different, but the facial expression and body language are pretty universal. Purposeful walk, busy facial expression, don't avoid eye contact just ignore everyone else and focus on where you're going. Unless security is particularly strict, places like loading docks, backstage, service areas.. usually nobody will even say anything.

Timestamps for self: 8:05 - Hiting crash bar with bent coat hanger 30:15 - Common keys 41:35 - Going over quickly all types of keys

In 1970 a UK department store chain used men in brown uniform coats to deliver and set up displays. One day men in Brown coats cleared 1/3 of a floor put it in their van and drove off totally unchecked. They did not work for the company

I think I need to get into this business because I knew 90% of this just from goofing around trying to see what kinds of stuff/places I can get into. Was looking for a bathroom one time while riding my bike on a really long trail (urban area) and ended up inside the production floor of a facility that was supposed to be sterile and inaccessible. The workers had a habit of going outside for smoke breaks through an unsecured door on the side of the building so I just pretended to be a new employee, chatted with one for a minute, and followed them inside. They didn't even ask me what I did or who my supervisor was, etc. Used the bathroom and left without anyone ever knowing I was there and felt like I had discovered a superpower.

You can trip many "request to exit" sensors by just slipping a piece of paper thought he top of the door, so it becomes a "request to enter".

One big problem is when the law says "you have to do x" when x is something that lowers security (in many places you are required by law to have a lock-box on the wall that can be opened by emergency services so that they can get in if they need to and in many cases those lock-boxes have been shown to be flawed)

Scolding the people in control of sound is like being rude to your servers, valets, janitors, etc... While you have that one 45 minute presentation that is all you are thinking about, they have been there days before and will be there cleaning up the day after, and you probably ignored the emails they sent you asking about your presentation. So while you know what's on your presentation, they likely have no idea... and there is a full day of presenters that also didn't do anything but think about yourself.

I’ve always wanted to try pen testing. I’ve been a facilities engineer for about 5 years now, spent a lot of time playing with door control systems.

Hey maybe let the sound guy know you intend to have sound playback in your presentation beforehand. Sound techs aren't going to just have an input source cranked up if it isn't going to be used, otherwise it introduces speaker buzz distracting from the live, spoken word sound. If you're going to have sound coming from, say, your laptop, make sure your laptop is properly outputting audio so it can be piped out to the speaker setup in the room. Don't just demand it work out of nowhere beforehand.

Can't begin to count how many deeply layered secured locations would let in a copier repair tech in w/o even checking the bonafides as to whether a service tech had actually been called out. Security would issue me an all access guest wave badge after signing in at the front desk, toolbag in tow. Places I had no buisness having that ease of access. Casino counting room floors, police impound areas, military armories, judges quarters, even a governors office once. If i'd had ill intent when I ran my buisness I could have walked out with weapons, hundreds of thousands of dollars, Jewelry, drugs, you name it.

After I had been in the Army for about 6 months my unit went to JRTC Fort Polk, LA. I think I was a PFC (E-3) as was my buddy (what's up Mike if you see this). The Army flew the soldeirs to Ft Polk but our gear (vehicles, howitzers, etc) went by rail. We got ther about a week before our gear. When the time came for our gear to show up we were supposed to have a driver and TC standing by to drive the vehicle off the train and take it to the motorpool. Myself (the TC) and Mike (my driver) went to the designated spot at the designated time. We were just standing around waiting (our gear was late). While there a guy asked us to hand off his radio (handheld walkie talkie type) and clip board to the guy that was supposed to releive him because he had to use the restroom and couldn't wait any longer). I discoverd, you can run the US Army if you have a radio, a clip board, and balls. I had complete control of the rail yard and had a line of people waiting to take instructions from me (including a Major and severa other officers). One thing I found squashed all discent and questioning instantly was pointing with the radio antenna. No idea why, but when you do that people cannot disobey. Since shortly after that day I've always carried a clipboad and radio in my truck. I recently added a generic hard hat and reflective vest.

Best “act like I belong” moment of my life was as a punk teenager. I was skipping class at school. The teacher who’s class I was skipping knew exactly where he would find me. He sent one of our school administrators to the vocations building. I had lied to my vocations teacher that I was allowed to be there. The administrator went to the vocations teacher and asked if I was there. My V-teacher was like, “Yup. He’s in such-and-such a room.” Now, there was a whole huge group of us skipping together from a variety of classes all in the same place. We had the youngest Freshman just outside, door open so he could still be social, on lookout duty. He runs in and says, “Mr so-and-so (the administrator) is on his way!” It was like fucking cockroaches. No one else had the foresight to lie to our V-teacher to be there. So, they all hide behind the cubbies in back, in stand-up closets for coveralls and brooms and such, one even stood behind a large American flag because it was behind the cubbies, so you really couldn’t see his feet. It was hilarious. I sat there cool as a cucumber. I didn’t suspect the admin was on his way for me. I had permission from the V-teacher to be there. I wasn’t worried. Admin walks in and sees me all by myself reading a book or some such thing, just chillin’. “Hey, Mr. So-and-so the V-teacher told me that Doug Moore is in here. I was sent by *insert name of teacher who’s class I was skipping at the time* to get him. Have you seen him?” Me, “Nope. I know him, but I haven’t seen him all day.” Admin, “Alright. Well, if you see him, tell him to report to Mr. so-and-so. He’s going to get written up and have detention,” and he left. A gaggle of fellow teenagers burst out of their hiding spots utterly amazed! LOL! I wasn’t a cool kid. I wasn’t Mr. Always-play-it-smooth. It was just this moment in my life where I realized that people in charge don’t care and don’t pay attention. The Admin didn’t know me from any other kid in the school. If I lied and pretended to belong, he would just move on with his day.

I work in the Access control industry, I've always called it the illusion of security

My last job was working in a bank and we had HORRIBLE physical security. "Hey man I'm here to work on the ATM" Pretty much any employee would give them their own personal key fob and they would be let inside. It's also funny to note that each key fob worked on EVERY door. I was a teller at my branch and I could literally use my key to get inside any other branch, their secure rooms, hell I could even just walk into the CEOs office with it. Granted it was a small credit union but still I look back at it with amazement

I should also note that the same thing happens to physical security as computer/device security: If you make it hard to use, people will find a way around it. When you make people have to choose complicated passwords that you mandate must be changed every 2 weeks? You get a lot of Post-It notes with passwords. You also have a rise in internal customer service tech calls for people who forget/lose passwords. None of this is very secure. Good security, physical or computer/electronic, should be as easy to use as possible, so that people follow the correct procedure rather than finding a work-around. Great examples of what not to do leaves the security open to "key issues," which Ollam's team often takes advantage of......

I remember once on a school trip at a hotel our room's card was at one of my roommates who was supposed to arrive a couple hours later than me. Since I was very tired and didn't want to wait it out in the lobby I noticed there was a noticeable gap between the door and the frame, big enough for me to slide in my credit card and get in. Thanks to this video I now know, four years later, that this is a pentesting technique.

With the tips from this video I managed to break into three different IT rooms and music instrument locker rooms at my school. I let a higher up teacher know about it and he used the footage to get the school to finally replace all the old IT systems and band room which they’d been holding off for a few years at that point. Awesome stuff.

I'm a Software Engineer, and it's crazy that you can just clone a keycard by being near it. There are all sorts of methods in cryptography, using asymmetric keys and encryption, which would completely prevent cloning of a keycard. Keycards can power a small processor using the energy from the door key reader. It's baffling to me that these security companies who design these systems don't do this

I met a guy who worked for cybersecurity pen-testing company that also had physical pen-testing people. He seemed to LOVE his job. I was telling him abt accidentally leaving my computer on overnight years ago at a bank and getting in trouble (one time warning) the next morning. He said if employees at companies he was pen testing didn’t have their computers secured, he would put something on it to go off like an alarm during working hours that took over the screen w a message like “I’m the idiot who left my computer on!!🎉” Seemed like it paid well too.

Acting like you belong always works. Be confident and don’t hesitate. As a locksmith of nearly 16 years I’ve seen some of these tricks but there were a ton I hadn’t. Love this video for my own professionalism. Kinda also hate it exists for everyone to see too. A major eye opener at some of the things you can do though. Wow!!!

I had a huge grin through the whole video. Great stuff!

this talk was so captivating i didnt feel the 44min flying by

Doesn't hear sound "Yell at the guy in the back, he's not doing anything" when he find out there is sound "turn the sound the fuck up please" when he find out he has a remote "this is like dad's living room remote" possibly when he realises how obtuse he was just being even though the problem is fixed homie goes dismissive of the situation "whatever I'm gonna continue" -damn, I don't know if you were just crazy nervous or smth but you sounded like a jerk. Good content though aside from the manners.

I was a burglar as a child. I've used a lot of these tricks. The outer hinge was always a great sight to see. I once spent multiple days unscrewing bolts to remove siding just to find my access point blocked by a pallet of concrete bags which I then painstakingly removed and relocated one by one. I believe I was 12 at the time. I'm glad I got all the trouble behind me as a kid. It's all expunged now. :)

Awesome 💯, I do vegetation maintenance on cell towers mainly, but also do a lot of other construction, electric/jobs. I'm constantly having to access cell towers on private property or Forest service Land so I taught myself to bypass pick and decode locks. My boss doesn't even have a clue how much time I save him from people changing codes locks and other stuff. Instead of getting on the phone and calling a tech or a landowner, I just let myself in. Sometimes I get into trouble and just say that the Lock was open😅😅😅

As a software developer, this is very interesting. Also I feel like no one in the audience has any idea of what he's talking about when he gets too specific and makes jokes. Which is also funny

Back in the 90's I did this with our executive protection clients with a get out of jail free letter from the client. Once we had security acceccing all the head hp'sboffices. It was one of my favorite job I ever had.

i love pen testers looking at a door and saying "i could get in" My High school like 10 years ago got a new engineering lab. the doors are the glass frameless doors (altho it does have a deadbolt) It also has the locks on the bottom but uh oh who ever installed those parts on the floors didnt install it right. The deadbolt dosent work either. If you just pull really hard there is enough clearance in that lock that lets you just open the door. I totally didnt abuse this system.

Deviant Ollams content is always great

fascinating 44 minutes, ...probably on a gov list now, for watching that.

Old but gold

My proudest moment was at a 24/7 gym. My buddy had a membership, i just went in with him to work out. No staff at night, so it wasn't a problem. One night, his card didnt work on the slide scanner on the outside. He thought we were SOL, and for a moment I did as well. I remembered that on the inside of the door, it had a motion sensor. The gym used to be a physical rehabilitation center for a hospital; motion sensor was for disabled people who might have a hard time with a door handle. I grabbed a piece of notebook paper, folded it a few times, slipped it between the top of the door and the frame, and just swung it left and right while i pushed on the door. We never paid for a membership again.

Look as though you belong is one of the most powerful anti-security tools in existence. I spent about 4 years working as a stage crewman, and that meant I was often issued a AAA pass so that I could get anywhere I needed to to set up the show (or the reverse), however a lot of shows wouldn't bother with passes. In almost all cases, a pair of steel toed boots, a high-vis tucked into my back pocket so that it mostly hanged out by my leg, and black clothing like a tech/hand would wear got me basically anywhere I wanted, even places I had no right to go. Backstage? Never questioned. Audience seating? Never more than a glance. I could walk straight into the security room or behind the bar or wherever I wanted, as could basically anyone else on the crew. And I never needed more than £30 worth of clothing that looked about right, and the confidence of someone who actually was supposed to be there and in-fact was a little bit pissed off at having to go through security to do my job. It's amazing what a little bit of insider knowledge will do for you there too. As mentioned with the elevator test routine, just a few simple things you could pick up on any forum are enough to convince most people who don't know the trade that you do.

This is such a cool video. It's really interesting but also extremely educational. I didn't know there were this many issues at so many places.

That was one of the most incredible things that I have ever watched on Utube in my life!

Don't blame the techs. Showmanship 101. Epic fail. Shame. Shame.

Actually, the thumbturn deadbolt IS a code violation (IBC 1010.2.1 & 101.2.2) as this requires more than one motion to exit. The deadbolt shown on the aluminum pair of doors in this video is in violation of the building code. (T.J. Gottwalt, AHC, CDC, DHT, FDAI, FCSI, CDT, CCPR)

Been doing IT for years and knew a few of the tricks but not all of these. I would LOVE to do work like this, wow.. What a blast. I know this is 2 years ago but I wanted to watch this more and more! lol

I worked a few years doing subcontract IT maintenance and field service. It's incredible how easily you can access things like network rooms in office blocks and department stores just by carrying a toolbag and a random work order. I'd say only 10-15% of the time did anyone ever call someone to confirm my authority to be there. Stupid simple. They will literally show you where to go and open the doors for you.

Everyone romanticizes nearly every job when they're on the other side of the fence. Once they learn the reality of those jobs, most people change their tune. I used to romanticize the military, mostly due to movies. Then I became a rifleman in wartime... How quickly I changed my tune. Anyways, it's already cool to learn how these guys operate.

Well, nice talk, but don't be rude to poor sound guy. If you spoke with him before your talk this all could be avoided.

“Turn the sound the fuck up please” “There’s a remote oh wow” Glad I don’t work for him lmao

I used to print t-shirts for a dance club and printed my own with security on the back of it so I never had to pay getting into the club. LOL

Lol. @20:00 We stayed at a hotel in Phoenix. The bag greeters had like 5 or so golf carts to take people to their rooms. The hotel was a campus of haciendas, so to speak. But 11pm or 12 comes around and four of us were drunk and wanted a ride back. Well, no one was there to take us, but they had like 20* keys that all worked stashed in the bottom of the Podium right there next to the parked golf carts. I just had to look and give it a whirl. We had a good time getting back to our rooms.

Oh, another interesting point on the egress sensors. A square plate of steel will cause a vehicle gate in many places that use them. You could probably just tie a chunk to a rope and throw/slide it until you found the correct spot.

Adding convivence usually lowers security. The more crap you have (lock boxes, Intercom, Rex/Fob, postal lock, etc) the more options I have to get in.

anyone that abuses the sound guy is a complete jerk, this guy included. Come 5m earlier and be prepared for your presentation, also this is info most builders would know.

I can absolutely attest at how a metal clipboard can get you into places. Had a job not too many years back serving subpoenas for a living - not to individuals, but to big companies for various records related to litigations they were involved in. So I'd hit the front desk of these huge building(s) and get directions to the specific department I needed to visit. It was somewhat common to get a bit lost and end up somewhere, thinking "Oh, this isn't where I'm supposed to go", and then "OH, this isn't a place I should even BE" because I'd passed through numerous doorways with signs of the "Authorized Personnel Only" variety. Sometimes there'd be no security beyond such doors, but often times there'd be a desk and security right behind them. I'd just hold up the clipboard and give a wave and a "How's it going?" and march right on through. And I wasn't wearing any kind of uniform, just "business casual" attire...

I've been in the commercial door, frame and hardware industry for 23 years. I tend to use a a vertically steel stiffened door with Von Duprin 9875 3 point (top and bottom rod and rim latch), latching threshold with security stud hinges and a Frontline interlocking astragal. Sex bolt the exit device. If it needs acces control add latch retraction and RX switch if needed. Will work reliably, meet life safety, not allow use of pry bars, under door tools, etc. It's an expensive opening but worth it if you really need a secure, compliant and reliable opening.

It's fun to find an SQL injection bug. It's a lot more fun to find a witty message from a dev saying "thought you were clever huh?"

Alright fair enough. I was ready to watch 45 minutes of someone talking about an industry where they test writing pens, like on paper and stuff but i guess not. sounds interesting even if it's not what I was thinking. I'll stick around :)

I remember in high school I forgot my coat in a classroom and my teacher had locked the door and gone home. Forty-five seconds and one pencil later I had my coat in hand. I can't even pick locks that was just a simple matter of slipping the latch back. Keep in mind my high school was a school that had multiple gun related incidences in and next to the school so this was kind of inexcusable in my opinion to have doors that could be opened so easily.

loving that this comments section is 60% "be nice to the sound guy >:c" and 45% "here's my smoothest security break moment" & 5% "don't know why I'm here but good video" lol

I also have a genuine question for Ollam...... You talk about how to fix many of the physical security issues. How do you fix the key issue(s) ? In other words, how do you provide access to vendors, follow fire code(s), and not have all these "well-known" "Key Issues?"

That universal key thing applies to a lot more than just telephony boxes: traffic light controls, electric meters, transformers, commercial irrigation timers, etc.. He mentions the CH751, for example...

18:12 it seems to depend on the particular handle - the ones in my house (although they dont have locks) only go down I have also seen one with a really tiny thumbturn on the inside that would also inhibit the handle from the inside (thumbturn would be impossible to grab you basically have to pinch it to actuate it) that does go up. I remember discovering the ability to pull handles up to open them ages ago - it was pretty interesting to young me

So i was working at a big place 20 years ago, and we all had key cards that gave us access to some doors in the building, the doors had a card reader which you inserted the card into which turned the door unlocked if you had clearance. but we were working with magnetic shit, strong magnets (not neodynium) but strong ferrite magnets so often our key cards got demagnetized or corrupted. So people got stuck and had to call someone to come and open a door for them. New easy solution by the company, they installed new key card readers on every door, and they just told us "if you get stuck just place the key card in the card reader for 10 seconds and it will unlock" and the doors did unlock after 10 seconds. It was just a physical sensor that saw that something had been placed into the key card reader for 10 seconds and it unlocked the door, cardboard worked perfectly fine, so all of a sudden with a piece of cardboard you had access to everything in the building. Its a wonder no one noticed and stole the company blind. But i can see how a Pen Tester might have seen that, someone tries to get in, slides the key card in and nothing happens, so he does it again and counts down to 10 and the door unlocks, they would think "hmmm do you actually need a card or not?"

What i have done in the past is add more than one type of access on a card with a completely different format and a separate encryption key for a Secure area only for Authorised personal. They were not security guards or cleaners. Most users only had the main credentials. Also using a unusual format is a hindrance for most, many formats are just not practical anymore.

Ive used a office folder to set off one of a request to exit sensor that my boss installed in a warehouse that held very expensive stage gear for a well known artist, safe to say it was reinstalled correctly😂

A light up Uber sign and the Uber sticker on your car can pretty much get you in any restricted parking area which is step one to getting into any restricted building

sagenhaft! Do what You do to make it more secure for us all. Great speach and keep smiling. Cheers, BM

Might grab one of those thumb turn tools... pretty neat. Our standard industry keys are different in NZ, but they're the same story. Cool presentation!

My frandfather was a locksmith his entire life. He did the OG Electronic Entry Locks at DisneyWorld. Used to have a van filled with key-machines and millionkeys and locks. Now I am a Home Inspector and Building Inspector plus contractor. But I still change all my own locks

Our company's main office is about 300 miles from me. But my office has a backup server in a locked closet. One day the building manager showed up at our office and needed access to something. Can't remember what specifically he was looking for. Maybe the circuit panel or something. I don't know. Doesn't matter. Whatever it was he couldn't find it anywhere in the office so he assumed it was in the only remaining room in the office which was of course locked. And only the IT guys 300 miles away had the key. Someone did call IT to let them know like hey some dude is here claiming to need access to the server room. But anyway he first tried the under door rod thing. It didn't work because there was not enough space behind the door to get it far enough under the door to lift it up to the handle. So next he went from the top. The office has a drop ceiling with ceiling tiles. And turns out the wall for that closet only goes up to the drop ceiling. So all he had to do was pop out a ceiling tile, then reach over the wall and pop out a tile on the other side. He shined a flashlight into the server room for a minute. Didn't find what he was looking for and left at that point.

These must be my people! I love finding new ways around security. My friends all say I need to work in loss and prevention.

the weight vest guy is why we aren't even allowed to talk to the cash collectors or vendors unless we were assigned to

14:57 that was a great balloon noise, and a hilarious way to trip a sensor!

bizarre.. a few years ago i saw this same video from a different channel think it just showed up in my recommended videos one day and in the title mentioned it was a Deadwood hacking conference, as a black hills local thought that was interesting and watched the video which I found deeply intriguing. Now a few years later I am a computer science student, and I was watching coding and white hat hacking videos and came across the term physical pen testing. Upon hearing it i immediately thought of the deadwood conference where they were doing physical hacking. Then i typed in physical pen testing and this was the first video i clicked without knowing it was from that same deadwood hacking conference held a few years ago

Definitely have used some of these basic techniques to access stuff just for funsies. If I can do it anyone can do it. My highschool classmates and I used coat hangers to slip the unprotected jams at school. We never told a soul we had easy access, we just had fun with it. Roof access. Access to administrative offices. It was easy. Physical security is only as good as the weakest link. You gotta start from the easiest thing to attack first and then move up from there. Nobody cares about a high-tech access scheme if you can just blow a balloon through the door.

This is a job I'm built for. Thanks to the speaker and uploader!

The clip mounted at the lever on hotel rooms is a violation of NFPA. Hotel room entry doors always have a minimum fire rating of 20 minutes and that clip product doea not bear a UL listing. You cannot mount non listed hardware above 18" on a rated door.

This technique of sliding a door open, I used that when I was about six years old... this is over 30 years ago and over those decades we still have not learned a thing!

The computer duster trick blew my mind

Thanks KZbin algorithm. Fascinating and very entertaining

this is lit!!!! enjoyed it all the way thoroughly!!!

That story about pretending to be an elevator tech was amazing 😂

Geez, him bitching at the guy in the back over the sound was so cringe. Then when he realized he had the remote, he still had to cry about just to be difficult. That just summarized this guy’s whole personality in 30 seconds.

How many times have i got into a Building by bypassing the Exit Relay contacts. Very rarely is the feed for the lock fed from inside the building. This is how the intercoms are designed. And way too many installers forget to change the installer access credentials, Programming mode, add a new master code. Thank you for full access.

Nice attitude and language keep it up m8

What a satisfying and fulfilling career! I would definitely enjoy that. Surely interpersonal and communication skills are important. I have both. However, I’m lacking the technical skills.

21:40 a LOT of these key boxes are used by the local Fire Department, especially on public buildings like schools and businesses. We carry the key to the box on the engine.

That was great. One thing I always thought too is I bet you can get in to places that have door codes by simply calling and ask for them. Lot of companies just give them out because they always have contractors going into these places. The common keys is frightening though, I would have just assumed that when you buy one of these panels you get a at least semi unique key, like when buying a pad lock. Now I kinda want to buy those keys just so I can test them out lol. I imagine fire panel keys are all the same too. There is stuff in there you could do to basically open every single door in the building.

This feels like a presentation you would see in a "Minions Villain-Con".

If you have children in your house, don't install security hinges. Children can get their fingers stuck in the hinge more easily if it is a security hinge.

Key boxes are used by RE agents to allow access to tenancies.

I was a Phisical security specialist in the Navy. I still keep a small L pick in my pocket. I freak my friends out all the time when they go to open their front door and I just say "I got it" and swipe the latch. Then I show them why I was able to and reinstall the latchplate correctly.

deviant ollam is one of my favorites simply just bc his attitude and how he acts lol very relatable..a lot of people try to be too professional like.....this is my dream job too really ive spent the last 2 years learning the cyber security/pentesting/redteam part of it and really hope i can eventually find a job in it somewhere its like perfect for my knowledge and prior lifestyle too and just everything

16:43 reminds me of when I was at my schoolhouse for the marine corps, the card readers for one of my doors wasn't very good and we were boots so we didn't like going to the duty to get the ood to ask for the master key, so we just grabbed a string and tied it to the handle so that we could just pull on it and get in our room, they knew it was broken too, just didn't really get fixed quickly

00:00 🚪 Lock picking is just one of many methods physical pen testers use to gain entry to buildings. 02:20 💡 Manipulating door hinges or using hinge pins is a common and effective method of bypassing locked doors. 03:31 🛠 Installing security hinges or jam pins can easily reinforce doors against hinge-based attacks. 04:03 🔓 Slipping latches is a simple technique that exposes vulnerabilities in improperly installed door hardware. 05:21 🚪 Understanding the functionality of dead latches helps to prevent latch slipping attacks. 11:12 💨 Using cold gas clouds from inverted spray dusters can trigger request-to-exit sensors, unlocking doors without physical contact. 16:08 🚪 Lever-style door handles make under door tools highly effective for gaining entry to secured areas. 17:44 🔒 Dynamic door bottoms like those from PEMKO can prevent under door attacks by blocking access to lever handles. 19:08 🛡 Simple solutions like door handle shrouds or mounting handles lower can deter under door tool attacks. 20:05 🔐 Consider using inexpensive door stoppers on server room doors to frustrate physical attackers. 20:34 🛒 Physical penetration testers sometimes resort to unconventional tactics like stealing carts to pass time on jobs. 21:31 🗝 Lock boxes containing keys are commonly found in buildings, including those with telecommunications infrastructure. 22:26 🔑 Some access control systems, like those from Linear and Door King, use the same key across multiple panels, making them vulnerable to unauthorized access. 23:20 🚪 Knowledge of common keys and access control systems can be leveraged to gain unauthorized entry, even without physical keys or credentials. 27:05 🏢 Postal switches in door control systems can be manipulated with common keys, providing unauthorized access to buildings. 28:57 🚗 Keys like the 1284x are widely used across fleets, including police vehicles, and can offer unauthorized access if obtained. 30:07 🗝 Tools commonly carried by physical penetration testers include elevator keys, jigglers, and wire bridges, enabling access to various systems. 31:30 🕵‍♂ Physical penetration testers often come from diverse backgrounds and may need to cross-train in electronic systems for more effective attacks. 32:54 🧳 Confidence and looking the part can often facilitate unauthorized access, as demonstrated by various real-life infiltration stories. 39:10 🔑 Armed guards at separate entrances can hinder physical penetration tests, requiring alternative strategies like electronic credential cloning. 40:06 🕵‍♂ Approach armed guards with confidence, blending in by engaging in casual conversation or sharing relatable stories. 41:03 😅 Sometimes unconventional tactics, like surprise hugs, can disarm guards and facilitate access, albeit with limited success. 41:44 🏢 Identifying access control systems and their corresponding keys or credentials is crucial for successful infiltration during physical penetration tests.

21:38 yea I worked at a hardware store, and with no experience with any form of entry got a 10-button lockbox open in 10 minutes to reset the code so we could resell it. The next year I did the same with the 4 dial version of it.

This guy would have loved my complaints when I worked security. "This door has a 3/4 inch gap between door and frame at the latch. Literally nothing but 1/100th of an inch of latch is in the hole... anyone can get in this "secure" door." 3 months later and 10 complaints "here is a video of me using a BRANCH to get into the building guys, come on!"

There literally was a bug in Siedle door communication systems that work over a/b telephone systems where you could call a number from the outside and unlock the door by pressing the number 9 or something like that. Or just use a DTMF generator on an active call.

I thought the physical security industry was screwed up enough from LockPickingLawyer's presentation at SaintCon...this is just on a whole other level. Ever wondered what good "security by obscurity" does you? Well, this is it LOL

Most doors are really easy to bypass if you look outside the box! 5:31 deadlatches require the frame to be flexed apart. Most of these doors don't close right either.

You forgot those older doors that just had the push lever on the inside so you could just run the cart up against it and it would open. Obviously now that large volumes of information are transacted by computers you only really see them on buildings built before the late 90s.

As someone who has work security for a number of years, i will tell you hotels sometimes have those "under the door" tools so that they can change the battery... ALSO sometimes the night auditor will ask you to check the room but refuse to give you a key to actually check the room, so you knock, and since it's 3am nobody answers and when you tell them they say they want to to check they will tell you to use that tool. It's also REALLY fucking easy to use. It's basically just wire on a bent piece of metal. Like you could make one with some trash probably if you are mcgyver.

I am glad I found this. Some type of Pen Tester is a dream job I am working to.