This session shares some adventures in physical pen tests and social engineering in terms of the dangers of not thinking outside the box when it comes to pen testing our enterprise. Bad guys (and good guys) are definitely outside the box and taking advantage of our rigid and limited approaches. Dr. White talks about how easy it is to go down the dangerous road to automated, one-click pen tests.Learning Objectives:1: Learn why you can’t just stop after you click print on the software.2: Learn why you must allow for inventive and outside the box attacks.3: Understand that you cannot be complacent on audits in terms of just checking the box.