Too my thinking, the most important metric here is "will what I'm doing provide useful/actionable data to the client". Generally speaking, picking a lock that only the dozen greatest locksport ninjas on Earth can compromise scores low on this scale. The more your bypasses rely on low skill tricks the better, quite frankly.
I would strongly suggest having a set of Jigglers and/or Rockers. They don't always work however they are quick & easy to try. As for Master Commercial and Pro series don't be intimidated. I actually have a harder time with No 3 locks than the Commercial series. I love seeing a Mul-T-Lok padlock with a Medeco core on a locker that has an Aluminum hasp. Yay Team :D
Thank you : superb video as ever. If anyone does pick or jiggle filing cabinet and drawer locks on the job, make sure you've practiced relocking these types of locks again. No sense in carrying out a successful surreptitious entry when you have to leave an unlocked cabinet as evidence. Zero residual presence is almost as important as gaining access! I also carry a set of three common master keys (L&F 18 / 92 / FFe) I'm always surprised at how many desk / filing cabinet locks of various brands can be opened with these three keys.)
Personally, in a real world application, I try picking with any keyway before I use destructive means. I’ve had locks that should’ve been super easy not pick open and locks that should’ve been hard open when I barely started. Hardest ones are when you have a dozen people watching and after 10 seconds start asking how much longer cause they seen it done quicker in the movies. Thanks for sharing!✌🏼
Isn't that the truth! There are of course some locks I'm just not going to try, but an Abus or American is at least going to get a few scrubs with a double peak followed by a good probing with a hook - then you get that $7 brinks that just will not open lol
During red teaming, are you allowed destructive entry, pretty much like a burglar. Like it's so much easier to cut off most padlocks, or use core pullers (think that's what they are called), or even hydraulic jacks to spread doors. I know it's only an exercise to highlight a targets vulnerabilities, but still.
@@amihirata thanks for the reply. It wasn't something that I thought of until watching some videos on martial arts being pressure tested. So although locks might be pick resistant, windows walls and roofs are not. Obviously I don't mean that you would destroy a wall or roof to gain access, but these are two methods of entry I've seen used in shops local to me, bypassing high security doors and shutters.
@@legion162 Agree! I did contract glazing for over 10 years. Many times to only thing holding in a window is a couple strips of rubber. Pop off the bottom sill, peel the rubber and you slide out the window. Still have to be aware of alarms, etc... Often the best way to be invisible is to wear a fluorescent orange/green safety vest, and a truck.
Still, the best way into a building is a pack of cigarettes. Find the back "smoking door", make small talk, hand a couple out, then follow everyone in in 15 min. Even if you dont work there but have some type of business. You just needed a smoke out of sight. Right?
I don't know about the rest of you, but if I were a red-teamer and had a Medeco separating me from my objective, I'd look for an alternative way to breach.
In general, of course. But (taking your comment at face value) the "red team" in this context is a group that has been hired to simulate an attack on an organization's defenses in order to highlight and fix security issues. Our not-so-civil friend here is involved in this area, so he is actively invited to open things that do not belong to him.
![[67] Cylinder Swap Attack](http://i.ytimg.com/vi/2Lm2uqcigtc/mqdefault.jpg)
![[67] Cylinder Swap Attack](/img/tr.png)
![[60] I was Hired to Legally Break into a Company](http://i.ytimg.com/vi/4pD3AYYKbZg/mqdefault.jpg)
![[61] Covert Entry Tool Tierlist](http://i.ytimg.com/vi/7FullVIDj9o/mqdefault.jpg)
![[LIVE] : ONE ลุมพินี 79 | คู่เอก "ก้องชัย vs อาเมียร์"](http://i.ytimg.com/vi/WfPSA1A0NHc/mqdefault.jpg)
![[74] Security Assessment vs Red Team](/img/n.gif)
Too my thinking, the most important metric here is "will what I'm doing provide useful/actionable data to the client". Generally speaking, picking a lock that only the dozen greatest locksport ninjas on Earth can compromise scores low on this scale. The more your bypasses rely on low skill tricks the better, quite frankly.
I would strongly suggest having a set of Jigglers and/or Rockers. They don't always work however they are quick & easy to try.
As for Master Commercial and Pro series don't be intimidated. I actually have a harder time with No 3 locks than the Commercial series.
I love seeing a Mul-T-Lok padlock with a Medeco core on a locker that has an Aluminum hasp. Yay Team :D
Thank you : superb video as ever. If anyone does pick or jiggle filing cabinet and drawer locks on the job, make sure you've practiced relocking these types of locks again. No sense in carrying out a successful surreptitious entry when you have to leave an unlocked cabinet as evidence. Zero residual presence is almost as important as gaining access! I also carry a set of three common master keys (L&F 18 / 92 / FFe) I'm always surprised at how many desk / filing cabinet locks of various brands can be opened with these three keys.)
Do you have a social media or telegram? I’d like to ask some questions lol I’ve seen you in the comments of a few videos now
Personally, in a real world application, I try picking with any keyway before I use destructive means. I’ve had locks that should’ve been super easy not pick open and locks that should’ve been hard open when I barely started. Hardest ones are when you have a dozen people watching and after 10 seconds start asking how much longer cause they seen it done quicker in the movies. Thanks for sharing!✌🏼
It never goes well whenever you have someone shoulder surfing you asking “is it open yet” that’s the worst
Isn't that the truth! There are of course some locks I'm just not going to try, but an Abus or American is at least going to get a few scrubs with a double peak followed by a good probing with a hook - then you get that $7 brinks that just will not open lol
@@jamesbridges7750 bump keys are invaluable in some of these circumstances as well. I have a ring of them for different lock keyways.
Fully agree, nothing to add.
Only mess with the locks you have to.
Love the BosnianBill reference btw. 🤣
During red teaming, are you allowed destructive entry, pretty much like a burglar. Like it's so much easier to cut off most padlocks, or use core pullers (think that's what they are called), or even hydraulic jacks to spread doors.
I know it's only an exercise to highlight a targets vulnerabilities, but still.
In very rare instances, destructive allowances are permitted, but I’ve never had the pleasure of being permitted to incur damages
@@amihirata thanks for the reply. It wasn't something that I thought of until watching some videos on martial arts being pressure tested.
So although locks might be pick resistant, windows walls and roofs are not.
Obviously I don't mean that you would destroy a wall or roof to gain access, but these are two methods of entry I've seen used in shops local to me, bypassing high security doors and shutters.
@@legion162 Agree! I did contract glazing for over 10 years. Many times to only thing holding in a window is a couple strips of rubber. Pop off the bottom sill, peel the rubber and you slide out the window.
Still have to be aware of alarms, etc...
Often the best way to be invisible is to wear a fluorescent orange/green safety vest, and a truck.
Still, the best way into a building is a pack of cigarettes. Find the back "smoking door", make small talk, hand a couple out, then follow everyone in in 15 min. Even if you dont work there but have some type of business. You just needed a smoke out of sight. Right?
Nice BB nod..
I don't know about the rest of you, but if I were a red-teamer and had a Medeco separating me from my objective, I'd look for an alternative way to breach.
Absolutely, unless the medeco could be easily bypassed by slipping a latch or using some other form of bypass
@@amihirata using a UDT you can bypass almost every deadbolt.
I think those higher security locks are a little more pickable when you’re actually supposed to be there lol.
He's back
I never left! I just pivoted to doing some social engineering stuff
@@amihirata Ha. You can't fool us with social engineering. Nice try.
@@amihirata Will you be sharing some with us?
yay
I would suggest that you don't open anything that does not belong to you
In general, of course. But (taking your comment at face value) the "red team" in this context is a group that has been hired to simulate an attack on an organization's defenses in order to highlight and fix security issues. Our not-so-civil friend here is involved in this area, so he is actively invited to open things that do not belong to him.
@@aihtdikh Now I got it