From: Marco Ivaldi (raptor@0xdeadbeef.info)
Date: Tue Nov 23 2004 - 05:12:24 EST
> I am trying to find some good resources for social engineering
> methodologies and such performed as part of pen-test work.
OSSTMM's Section B (Process Security) is a good start, though the version
currently on-line needs to be expanded a bit:
A very interesting source of social engineering examples is the book "The
Art of Deception: Controlling the Human Element of Security", by Kevin
Mitnick, William Simon, and Steve Wozniak.
SecurityFocus and PacketStorm also host some articles on this subject:
http://www.securityfocus.com/infocus/1527
http://www.securityfocus.com/infocus/1533
http://www.securityfocus.com/guest/5044
http://packetstormsecurity.nl/docs/social-engineering/
Finally, for italian speakers:
http://blackhats.it/en/papers/social_engineering.pdf
Hope it helps. Cheers,
-- Marco Ivaldi Antifork Research, Inc. http://0xdeadbeef.info/ 3B05 C9C5 A2DE C3D7 4233 0394 EF85 2008 DBFD B707
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:08 EDT