Sign in or 
Share this
Social Engineering
A Hot Term in Terms of "Ethical Hacking"
i thought may be beneficial for u..
Social engineering is quite possibly the least popular means of attacking a network currently employed in penetration testing. It certainly receives the least media attention.
These attacks, however, can prove quite costly and should be guarded against. This sort of attack can allow the attacker to bypass the security mechanisms of a network without using any script or hacking tool and without even executing a single piece of code.
Social engineering involves getting employees at target companies to voluntarily surrender their personal or corporate information. This is usually accomplished through nothing more than conversation, often over a telephone and without any direct contact at all. It is essentially a confidence game.It is a good idea to incorporate such an exploit into your penetration testing since social engineering can circumvent any logical security measures in place. It relies on exploiting employees who either do not place a high value on information security or do not understand that the information they hold (such as the IP address of their firewall or default
gateway or even their own password) can be misused to compromise the network ifdisclosed to malicious individuals.
There are various methods of social engineering. i ld like to discuss three in this article and give examples we are familiar with that are known to produce positive results. Among these are making apparently harmless telephone calls to employees of the target company, searching through the company's office trash, and casually looking at an employee's
workspace to directly obtain or deduce confidential information.
"Human Knowledge Belongs to the world"
"Use n Share Knowledge Ethically"
regardsRahul~cheers~
rahuldutt1 |
Latest page update: made by rahuldutt1
, Jan 15 2007, 3:08 AM EST
(about this update
About This Update
Edited by rahuldutt1
280 words added view changes - complete history) |
|
Keyword tags:
hack
social engineering
Social Engineering hack
More Info: links to this page
|
| Started By | Thread Subject | Replies | Last Post | ||
|---|---|---|---|---|---|
| MDK | RE.... | 0 | Feb 27 2009, 6:30 AM EST by MDK | ||
|
Thread started: Feb 27 2009, 6:30 AM EST
Watch
That has nothing to do with Social Engineering Rahul
Social Engineering has nothing to do with making telephone calls going through the Trash lol It is mastering the art of social behavior, social structure, and psychology, getting accessing, and controlling a target Who is the person... |
||||
| nozf3r4tu | Another phishing tool | 0 | Apr 17 2008, 4:56 PM EDT by nozf3r4tu | ||
|
Thread started: Apr 17 2008, 4:56 PM EDT
Watch
Hello Everyone,
Rahul,i tried to change the settings on my last posted yahoo phishing site,but the php mailer is hosted outside in somebody's server. However,since my job here is to try to help everybody understand and learn how to do this kind of simple tools,im going to post something i found in another forum i belong to. I checked it out to the best of my knowledge,but please scann before using anyways. It is a fake login generator,take a look: ----------------------------------------------------------------------------------------------------------------------------- Code: Select All http://www.megaupload.com/?d=YHVV434U This program will create a phisher for ANY website for a login whether with a _POST or _GET method Real simple to use just follow the prompts The maker of thos program is no longer working on updates or is he paying for the site anymore. This is version 2.3 i think it has a better interface so i use it. You can probably find 2.5 out here somewhere Regards Noz
Do you find this valuable?
Keyword tags:
hack
social engineering
Social Engineering hack
|
||||
Showing 2 of 2 threads for this page
