fbpx
TCM Security is offering free Active Directory Health Checks to any company with 10 or more employees. To inquire, please contact us.

Physical Penetration Testing

Physical penetration tests evaluate a company’s physical security posture. Our engineers will attempt to gain physical access to sensitive locations such as data centers, server rooms, and network closets through all means possible. Our toolkit includes, but is not limited to: drone reconnaissance, lockpicking, social engineering, sensor bypassing, and RFID/badge cloning.

Physical penetration tests evaluate a company’s physical security posture.  Our engineers will attempt to gain physical access to sensitive locations such as data centers, server rooms, and network closets through all means possible.  Our toolkit includes, but is not limited to: drone reconnaissance, lockpicking, social engineering, sensor bypassing, and RFID/badge cloning.

Our Methodology

All testing performed is based on the NIST SP 800-115 Technical Guide to Information Security Testing and Assessment, OWASP Testing Guide (v4), and customized testing frameworks.

Planning

Customer goals are gathered and rules of engagement obtained.

Discovery

Perform scanning and enumeration to identify potential vulnerabilities, weak areas, and exploits.

Attack

Confirm potential vulnerabilities through exploitation and perform additional discovery upon new access.

i

Reporting

Document all found vulnerabilities and exploits, failed attempts, and company strengths and weaknesses.

Thorough Testing

Activities performed during physical penetration testing include, but are not limited to:

  • Reconnaissance and information gathering
  • Social engineering
  • Impersonation
  • Piggy backing
  • Service, port, and website enumeration
  • Sensor bypassing
  • Lock picking
  • Badge cloning
  • Other testing depending on customer specifics and footprint

Thorough Testing

Activities performed during physical penetration testing include, but are not limited to:

  • Reconnaissance and information gathering
  • Social engineering
  • Impersonation
  • Piggy backing
  • Service, port, and website enumeration
  • Sensor bypassing
  • Lock picking
  • Badge cloning
  • Other testing depending on customer specifics and footprint

Thorough Testing

Activities performed during physical penetration testing include, but are not limited to:

  • Reconnaissance and information gathering
  • Social engineering
  • Impersonation
  • Piggy backing
  • Service, port, and website enumeration
  • Sensor bypassing
  • Lock picking
  • Badge cloning
  • Other testing depending on customer specifics and footprint

Proudly Trusted By:

sample penetration test report

Sample Pentest Report

See The Results We Can Deliver To You. No Email Required.

Penetration Testing - PCI Compliance - Auditing

See How We Can Secure Your Assets

Let’s talk about how TCM Security can solve your cybersecurity needs. Give us a call, send us an e-mail, or fill out the contact form below to get started.

 

tel: (877) 771-8911 | email: info@tcm-sec.com