Re: Pen-Test and Social Engineering

From: Francisco Pecorella (fpecor@cantv.net)
Date: Mon Feb 06 2006 - 20:09:09 EST

• Next message: Neil: "Re: Question about MSF web interface"
• Previous message: Tim: "Re: Pen-Test and Social Engineering"
• In reply to: burzella@inwind.it: "Pen-Test and Social Engineering"
• Next in thread: Andrew Lacey: "RE: Pen-Test and Social Engineering"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello,

Of course, many of the pentesters perform social engineering in order to
identify weakness in organizations.

When pentesters write reports of findings suggest in many cases that the
employees of the organization attacked (ethically) assist to awarness
courses to reduce the effects of the Social Engineering.

--
Regards,
FP
----- Original Message ----- 
From: <burzella@inwind.it>
To: <pen-test@securityfocus.com>
Sent: Friday, February 03, 2006 10:03 AM
Subject: Pen-Test and Social Engineering
> Hi
> In yuor opinion, can a Social Engineering test be considered part of a 
> Pen-Test?
>
> Thanks
>
> ------------------------------------------------------------------------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking applications on your
> website. Up to 75% of cyber attacks are launched on shopping carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and locked-down servers 
> are
> futile against web application hacking. Check your website for 
> vulnerabilities
> to SQL injection, Cross site scripting and other web attacks before 
> hackers do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> -------------------------------------------------------------------------------
> 
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Neil: "Re: Question about MSF web interface"
• Previous message: Tim: "Re: Pen-Test and Social Engineering"
• In reply to: burzella@inwind.it: "Pen-Test and Social Engineering"
• Next in thread: Andrew Lacey: "RE: Pen-Test and Social Engineering"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:27 EDT