RE: Pen-Test and Social Engineering

From: Terry Vernon (tvernon24@comcast.net)
Date: Sun Feb 05 2006 - 20:17:03 EST

• Next message: kish_pent@yahoo.com: "Re: Question about MSF web interface"
• Previous message: Serg Belokamen: "Re: Pen-Test and Social Engineering"
• In reply to: burzella@inwind.it: "Pen-Test and Social Engineering"
• Next in thread: jalvare7@cajastur.es: "Re: Pen-Test and Social Engineering"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Well, it wouldn't be part of a network specific penetration test if whoever
wants it to be wire only. On the whole however it is a method used by
hackers every day and therefore should be tested against regularly also.

So unless otherwise discussed, yes.

-Terry

-----Original Message-----
From: burzella@inwind.it [mailto:burzella@inwind.it]
Sent: Friday, February 03, 2006 8:03 AM
To: pen-test@securityfocus.com
Subject: Pen-Test and Social Engineering

Hi
In yuor opinion, can a Social Engineering test be considered part of a
Pen-Test?

Thanks

----------------------------------------------------------------------------

--
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for
vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers
do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
----------------------------------------------------------------------------
---
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: kish_pent@yahoo.com: "Re: Question about MSF web interface"
• Previous message: Serg Belokamen: "Re: Pen-Test and Social Engineering"
• In reply to: burzella@inwind.it: "Pen-Test and Social Engineering"
• Next in thread: jalvare7@cajastur.es: "Re: Pen-Test and Social Engineering"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:27 EDT