• Socsa@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          0
          ·
          1 year ago

          Part of modern pen testing absolutely involves a bit of social engineering to test policy enforcement

      • Rodeo@lemmy.ca
        link
        fedilink
        English
        arrow-up
        0
        ·
        1 year ago

        Is pen testing a visual test now?

        How does the physical appearance of the device affect its electronic penetration?

        • KairuByte@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          0
          ·
          1 year ago

          Yes? Pen testing is often “I am hiring you to see how far you can get into the company infrastructure under these constraints.” This includes human interaction, and humans can be a barrier to a pen test.

          Part of that is going to be looking as innocuous as possible. Though admittedly that isn’t always the case. This kinda gets blown away when someone goes “oh look, that’s a flipper zero, aren’t those used for hacking?”

          • Rodeo@lemmy.ca
            link
            fedilink
            English
            arrow-up
            0
            ·
            1 year ago

            Interesting. It sounded kind of ridiculous to me, I guess I didn’t consider gaining access to a building or something.