RE: Penetration Testing - Human Factor

---

• From: "StyleWar" <stylewar@xxxxxxx>
• Date: Sat, 26 Aug 2006 18:39:56 -0500

---

Mitnick is a good resource for review if you don't have personal experience
with it.

...Google his work on Sprint phones and Nortel switches and the Las Vegas
phone system (he was never caught, but did testify about it).

-

StyleWar

"I dare do all that may become a man; Who dares do more is none."
Macbeth, 1. 7

-----Original Message-----
From: Marios A. Spinthiras [mailto:mario@xxxxxxxxxxxxx]
Sent: Monday, August 21, 2006 1:20 AM
To: pen-test@xxxxxxxxxxxxxxxxx
Subject: Penetration Testing - Human Factor

As a thorough sceptic Id like to conclude in most cases of a
TRUE hacking incident social engineering has been a factor of
success for the malicious user attacking a system.
For quite a while now I have been compiling methodology
on the assessment of the weak human security link which can
be exploited through social engineering. Has anyone got any
thoughts they would like to share or guidelines to the audit
of the human factor when security is concerned?

Any information is much apreciated.


Many Thanks,
Mario A. Spinthiras


--------------------------------------------------------------
----------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
--------------------------------------------------------------
----------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------

---

• References:
  • Penetration Testing - Human Factor
    • From: Marios A. Spinthiras

• Prev by Date: RE: Penetration Testing - Human Factor
• Next by Date: RE: Penetration Testing - Human Factor
• Previous by thread: Re: Penetration Testing - Human Factor
• Next by thread: Re: Penetration Testing - Human Factor
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Boot floppy ... Root kit and other things? ... Cenzic Hailstorm finds vulnerabilities fast. ... Click the link to buy it, try it or download Hailstorm for FREE. ... (Pen-Test) RE: Informing Companies about security vulnerabilities... ... Need to secure your web apps? ... Cenzic Hailstorm finds vulnerabilities fast. ... Click the link to buy it, try it or download Hailstorm for FREE. ... (Pen-Test) RE: Boot floppy ... I assume you're not in a domain, so you don't have admin privs on the ... Cenzic Hailstorm finds vulnerabilities fast. ... Click the link to buy it, try it or download Hailstorm for FREE. ... (Pen-Test) Re: Boot floppy ... and the user's own manager won't reign them in, ... Cenzic Hailstorm finds vulnerabilities fast. ... Click the link to buy it, try it or download Hailstorm for FREE. ... (Pen-Test) RE: Old @Stake Tools ... Cenzic Hailstorm finds vulnerabilities fast. ... Click the link to buy it, try it or download Hailstorm for FREE. ... ting ding ting ding ting ding ... (Pen-Test)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > pen-test  > 2006-08