In a physical assessment, the security of your physical infrastructure is tested. The best IT security is of little use when the door to the company stands physically open to any attacker . Of particular interest, therefore, are all interfaces between the IT department and other departments.
Exploiting vulnerabilities in access control or in processes and the awareness of employees often provides a way to access the physical spaces of a company.
On this basis, the following targets are possible:
The customer can decide how much social engineering is used in the assessment. As with all projects involving an amount of social engineering, SySS abides strictly by its social engineering code of ethics (see SySS White Paper, Section 3.3).
The physical assessment provides several insights. The assessment can, for example, be used to answer the following questions:
These findings can then provide further means by which to expand or introduce processes. Further awareness measures can similarly be derived from the lessons learned.
Steffen Stepper
steffen.stepper(at)syss.de
redteam(at)syss.de
+49 (0)7071 - 40 78 56-6157
PGP Key
Physical assessments are carried out ideally over several days and by at least two consultants . The assessment is based on the following project phases:
DO NOT HESITATE TO GET IN TOUCH +49 (0)7071 - 40 78 56-0 or anfrage@syss.de | OUTSIDE REGULAR OFFICE Hours CALL +49 (0)7071 - 40 78 56-99
As a framework contract customer please dial the provided on-call service number
DO NOT HESITATE TO GET IN TOUCH +49 (0)7071 - 40 78 56-0 or anfrage@syss.de
OUTSIDE REGULAR OFFICE Hours CALL +49 (0)7071 - 40 78 56-99
As a framework contract customer please dial the provided on-call service number
GET IN TOUCH
+49 (0)7071 - 40 78 56-0 or anfrage@syss.de
OUTSIDE REGULAR OFFICE Hours
+49 (0)7071 - 40 78 56-99
As a framework contract customer please dial the provided on-call service number