Re: Social Engineering ... ?
From: David Hodges (dhodges_at_outermost.com)
Date: 11/23/04
- Previous message: Paolo Ottolino: "Re: CEH exam & hacking exposed"
- Maybe in reply to: Bones: "Social Engineering ... ?"
- Next in thread: Jay D. Dyson: "Re: Social Engineering ... ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 22 Nov 2004 20:31:49 -0500 To: pen-test@securityfocus.com
The book "The Art of Deception" by Kevin Mitnick has several excellent
examples of Social Engineering.
Shortly after I read that book I was at work early, and a woman came in
(this is before the office officially opened for the day) and said that
Jake (one of my associates) had said it was ok for her to come in and work
in our secure computer room (where all our servers lived), and would I let
her in. She offered no identification, didn't say who she was or who she
worked for.
Needless to say I waited for someone who knew her to come in to work to
identify her before I'd let her in. She was pissed, but what could I do?
She could have been someone trying some social engineering on me.
David Hodges
At 05:11 PM 11/22/2004, you wrote:
>I am sure this has been asked here several times before, but if
>everyone could indulge me I would be grateful.
>
>I am trying to find some good resources for social engineering
>methodologies and such performed as part of pen-test work.
>
>Books, links, previous SF posts (date/subject) etc. are all welcome.
>
>Thanks all,
>
>Bones
>the.bones-at-gmail.com
- Previous message: Paolo Ottolino: "Re: CEH exam & hacking exposed"
- Maybe in reply to: Bones: "Social Engineering ... ?"
- Next in thread: Jay D. Dyson: "Re: Social Engineering ... ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
