Physical Penetration Testing Scenarios
- Service Description: Conduct comprehensive physical penetration tests to simulate unauthorised access to buildings. These tests involve attempting to bypass security measures such as locks, alarms, security personnel, and surveillance systems.
- Scenario Attack: Simulate an intruder attempting to gain access through various entry points, such as doors, windows, or ventilation systems, using tools like lock picks, social engineering techniques, or by impersonating employees.
Red Teaming Exercises
- Service Description: Deploy a specialised team to simulate a real-world attack on a facility, including both physical and cyber elements. The goal is to identify weaknesses in security protocols, response times, and overall readiness.
- Scenario Attack: Conduct a coordinated attack that includes social engineering (e.g., phishing to gain access codes), followed by a physical breach attempt. This could involve tailgating into secure areas or planting rogue devices.
Security System Audits
- Service Description: Evaluate the effectiveness of existing security systems, including access control, surveillance, and alarm systems. The audit will identify potential gaps or outdated technologies that could be exploited.
- Scenario Attack: Simulate disabling or bypassing electronic security systems through technical means (e.g., jamming wireless signals) or by exploiting vulnerabilities in the software or hardware.
Emergency Response Drills
- Service Description: Design and conduct emergency response drills, including active shooter simulations, bomb threats, or natural disaster scenarios, to test the preparedness of building occupants and security personnel.
- Scenario Attack: Create a mock scenario where an armed individual attempts to enter the building, testing the effectiveness of lockdown procedures, communication channels, and response times of security teams.
Access Control System Testing
- Service Description: Test and evaluate the robustness of access control systems, including biometric scanners, keycard systems, and security checkpoints.
- Scenario Attack: Simulate unauthorised access attempts using cloned keycards, bypassing biometric scanners with artificial replicas, or exploiting human error at security checkpoints.
Security Awareness Training
- Service Description: Provide training for employees and security personnel on recognising and responding to security threats, including social engineering, phishing, and physical breaches.
- Scenario Attack: Conduct social engineering tests where employees are targeted with fake scenarios, such as someone pretending to be a technician needing access to a secure area, to evaluate their awareness and adherence to protocols.
Perimeter Security Assessments
- Service Description: Assess the security of the building's perimeter, including fences, gates, lighting, and guard patrol routes. Identify weak spots that could be exploited by intruders.
- Scenario Attack: Simulate a breach of the perimeter by climbing fences, cutting through barriers, or exploiting blind spots in surveillance coverage.
Cyber-Physical Security Integration Testing
- Service Description: Assess the integration of physical security systems with IT infrastructure, ensuring that cyber threats cannot compromise physical security measures.
- Scenario Attack: Simulate a cyber-attack aimed at disabling physical security systems, such as remotely disabling cameras or alarms, to gain unauthorised access to the facility.
Surveillance System Review
- Service Description: Evaluate the effectiveness of surveillance systems, including camera placement, coverage, and storage of video data. Recommend improvements where necessary.
- Scenario Attack: Simulate a situation where surveillance footage is tampered with or deleted, or where cameras are deliberately obstructed or disabled during an intrusion attempt.
Environmental and Structural Security Testing
- Service Description: Assess the structural integrity and environmental resilience of a building against potential threats such as earthquakes, floods, or explosive attacks.
- Scenario Attack: Simulate an attack using explosives or heavy machinery to test the building’s ability to withstand direct physical assaults or environmental disasters.
