Re: Social Engineering ... ?

From: Marco Ivaldi (raptor@0xdeadbeef.info)
Date: Tue Nov 23 2004 - 05:12:24 EST

• Next message: Paolo Ottolino: "Re: CEH exam & hacking exposed"
• Previous message: Rob Shein: "RE: Social Engineering ... ?"
• Maybe in reply to: Bones: "Social Engineering ... ?"
• Next in thread: David Hodges: "Re: Social Engineering ... ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

> I am trying to find some good resources for social engineering
> methodologies and such performed as part of pen-test work.

OSSTMM's Section B (Process Security) is a good start, though the version
currently on-line needs to be expanded a bit:

http://www.osstmm.org/

A very interesting source of social engineering examples is the book "The
Art of Deception: Controlling the Human Element of Security", by Kevin
Mitnick, William Simon, and Steve Wozniak.

SecurityFocus and PacketStorm also host some articles on this subject:

http://www.securityfocus.com/infocus/1527
http://www.securityfocus.com/infocus/1533
http://www.securityfocus.com/guest/5044
http://packetstormsecurity.nl/docs/social-engineering/

Finally, for italian speakers:

http://blackhats.it/en/papers/social_engineering.pdf

Hope it helps. Cheers,

-- 
Marco Ivaldi
Antifork Research, Inc.   http://0xdeadbeef.info/
3B05 C9C5 A2DE C3D7 4233  0394 EF85 2008 DBFD B707

• Next message: Paolo Ottolino: "Re: CEH exam & hacking exposed"
• Previous message: Rob Shein: "RE: Social Engineering ... ?"
• Maybe in reply to: Bones: "Social Engineering ... ?"
• Next in thread: David Hodges: "Re: Social Engineering ... ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:08 EDT