SlideShare a Scribd company logo

Social Engineering

Download as PPTX, PDF
n|u - The Open Security Community, profile picture
n|u - The Open Security Community

This document discusses social engineering techniques used to manipulate people into revealing sensitive information or performing actions. It defines social engineering as manipulating people to get them to do what you want. Common techniques include pretending to need help, building trust, and creating a sense of urgency. The document also outlines various human-based and computer-based social engineering methods, such as impersonation, phishing emails, and using popup windows. It notes that the best defenses include shredding documents, security policies and procedures, user awareness training, and keeping systems updated.

TechnologyBusiness
1 of 13
Downloaded 51 times
1
2
Most read
3
4
5
6
Most read
7
8
9
10
11
12
Most read
13
Social Engineering (Because there is no patch for human stupidity)By: Shobhit GautamTwitter @sh0bhit105
What Is Social Engineering?The art of manipulating people and getting them to do what you want.“Social Engineering - A euphemism for non-technical or low-technology means - such as lies, impersonation, tricks, bribes, blackmail, and threat - used to attack information systems.” "Social engineering" as an act of psychological manipulation was popularized by hacker-turned-consultant Kevin Mitnick.
Common Types of Social EngineeringHuman-basedComputer-based
Personality TraitsDiffusion of responsibilityChance for ingratiationTrust relationshipMoral dutyGuiltIdentificationDesire to be HelpfulCooperation
Techniques for persuasionA Direct Route Systematic and logical statementA Peripheral Route Beat around the Bush Trigger strong emotions such as fear and excitement.
Human Based methodsImpersonating IntimidationCreating confusionMay I help you?Can you help me?Building TrustAsk and It shall be given unto you seek and ye shall find.Dumpster Diving
Computer BasedPopup WindowsMail attachmentsSpam, Chain Letters and HoaxesPhishing WebsitesUSB devices Key loggers
Social Engineering Toolkit The Social Engineering Toolkit (SET) is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing.SET was written by David Kennedy (ReL1K) and with a lot of help from the community it has incorporated attacks never before seen in an exploitation toolset. It’s main purpose is to augment and simulate social-engineering attacks and allow the tester to effectively test how a targeted attack may succeed.
Social Engineering
./set
How to Identify A Social Engineer?Does not provide contact informationAlways asks for forbidden informationRushing Activities Name-droppingIntimidationObserve for Small mistakes
MitigationShreddersPolicies and ProceduresAwarenessUpdated patches and Anti Viruses/Malwares
NOW

More Related Content

PPTX
Presentation of Social Engineering - The Art of Human Hacking
msaksida
 
PPTX
Social engineering
Alexander Zhuravlev
 
PDF
Social engineering
Robert Hood
 
PDF
Social Engineering Basics
Luke Rusten
 
PDF
Social Engineering Attacks & Principles
LearningwithRayYT
 
PPTX
Social Engineering,social engeineering techniques,social engineering protecti...
ABHAY PATHAK
 
PPTX
Social engineering hacking attack
Pankaj Dubey
 
PPTX
Social Engineering
Cyber Agency
 
Presentation of Social Engineering - The Art of Human Hacking
msaksida
 
Social engineering
Alexander Zhuravlev
 
Social engineering
Robert Hood
 
Social Engineering Basics
Luke Rusten
 
Social Engineering Attacks & Principles
LearningwithRayYT
 
Social Engineering,social engeineering techniques,social engineering protecti...
ABHAY PATHAK
 
Social engineering hacking attack
Pankaj Dubey
 
Social Engineering
Cyber Agency
 

What's hot (20)

PDF
Social engineering
ankushmohanty
 
PPTX
Social engineering
Abdelhamid Limami
 
PPTX
Social engineering
Maulik Kotak
 
PDF
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
ControlScan, Inc.
 
PPTX
Social engineering
Vîñàý Pãtêl
 
PPTX
Hyphenet Security Awareness Training
Jen Ruhman
 
PDF
Cyber Security Awareness
Ramiro Cid
 
PPTX
What is Phishing and How can you Avoid it?
Quick Heal Technologies Ltd.
 
PPTX
Social engineering presentation
pooja_doshi
 
PPTX
Phising a Threat to Network Security
anjuselina
 
PPTX
Phishing ppt
shindept123
 
PDF
What is Social Engineering? An illustrated presentation.
Pratum
 
PPTX
Social engineering-Attack of the Human Behavior
James Krusic
 
PPTX
Information Security Awareness Training Open
Fred Beck MBA, CPA
 
PPT
Social Engineering | #ARMSec2015
Hovhannes Aghajanyan
 
PPTX
PHISHING attack
Shubh Thakkar
 
PDF
Security Awareness Training
Daniel P Wallace
 
PPTX
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Stephen Cobb
 
PPTX
Phishing attack
Raghav Chhabra
 
PPTX
Phishing
SouganthikaSankaresw
 
Social engineering
ankushmohanty
 
Social engineering
Abdelhamid Limami
 
Social engineering
Maulik Kotak
 
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
ControlScan, Inc.
 
Social engineering
Vîñàý Pãtêl
 
Hyphenet Security Awareness Training
Jen Ruhman
 
Cyber Security Awareness
Ramiro Cid
 
What is Phishing and How can you Avoid it?
Quick Heal Technologies Ltd.
 
Social engineering presentation
pooja_doshi
 
Phising a Threat to Network Security
anjuselina
 
Phishing ppt
shindept123
 
What is Social Engineering? An illustrated presentation.
Pratum
 
Social engineering-Attack of the Human Behavior
James Krusic
 
Information Security Awareness Training Open
Fred Beck MBA, CPA
 
Social Engineering | #ARMSec2015
Hovhannes Aghajanyan
 
PHISHING attack
Shubh Thakkar
 
Security Awareness Training
Daniel P Wallace
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Stephen Cobb
 
Phishing attack
Raghav Chhabra
 
Phishing
SouganthikaSankaresw
 
Ad

Similar to Social Engineering (20)

PDF
Social Engineering Basics
Sanjeev Kumar Jaiswal
 
PDF
Presentation_Social_Engineering.pdf
internetcomputer60
 
PDF
Unlocking the Hidden Potential
EricaCiko
 
PDF
Social engineering(nulldubai)
Muhammad Samaak
 
PDF
Yehia Mamdouh @ DTS Solution - The Gentleman Thief
Shah Sheikh
 
PDF
White Paper: Social Engineering and Cyber Attacks: The Psychology of Deception
EMC
 
PPT
VAPTdelivery7.ppt
smkmit2014
 
PPTX
Social Engineering Attacks How Hackers Exploit Human Psychology.pptx
xploreitcorp
 
PDF
- Social Engineering Unit- II Part- I.pdf
Ramya Nellutla
 
PPT
Module 3 social engineering-b
BbAOC
 
PPTX
Conference about Social Engineering (by Wh0s)
Marta Barrio Marcos
 
PPTX
Cybersecurity Social Engineering Tactics & Mitigation Strategies
Cindtoro
 
PPTX
Social Engineering
Manish Chauhan
 
PPTX
Social engineering 101 or The Art of How You Got Owned by That Random Stranger
Steven Hatfield
 
PDF
Insiders Guide to Social Engineering - End-Users are the Weakest Link
Richard Common
 
PPTX
The Art of Human Hacking : Social Engineering
OWASP Foundation
 
PDF
What is Social Engineering
Stealth Security
 
PPTX
What is social engineering & why it is important
Vikram Khanna
 
PPTX
btNOG 9 Keynote Speech on Evolution of Social Engineering
APNIC
 
DOCX
ITE516 A3
Jon Newson
 
Social Engineering Basics
Sanjeev Kumar Jaiswal
 
Presentation_Social_Engineering.pdf
internetcomputer60
 
Unlocking the Hidden Potential
EricaCiko
 
Social engineering(nulldubai)
Muhammad Samaak
 
Yehia Mamdouh @ DTS Solution - The Gentleman Thief
Shah Sheikh
 
White Paper: Social Engineering and Cyber Attacks: The Psychology of Deception
EMC
 
VAPTdelivery7.ppt
smkmit2014
 
Social Engineering Attacks How Hackers Exploit Human Psychology.pptx
xploreitcorp
 
- Social Engineering Unit- II Part- I.pdf
Ramya Nellutla
 
Module 3 social engineering-b
BbAOC
 
Conference about Social Engineering (by Wh0s)
Marta Barrio Marcos
 
Cybersecurity Social Engineering Tactics & Mitigation Strategies
Cindtoro
 
Social Engineering
Manish Chauhan
 
Social engineering 101 or The Art of How You Got Owned by That Random Stranger
Steven Hatfield
 
Insiders Guide to Social Engineering - End-Users are the Weakest Link
Richard Common
 
The Art of Human Hacking : Social Engineering
OWASP Foundation
 
What is Social Engineering
Stealth Security
 
What is social engineering & why it is important
Vikram Khanna
 
btNOG 9 Keynote Speech on Evolution of Social Engineering
APNIC
 
ITE516 A3
Jon Newson
 
Ad

More from n|u - The Open Security Community (20)

PDF
Hardware security testing 101 (Null - Delhi Chapter)
n|u - The Open Security Community
 
PDF
Osint primer
n|u - The Open Security Community
 
PPTX
SSRF exploit the trust relationship
n|u - The Open Security Community
 
PPTX
Nmap basics
n|u - The Open Security Community
 
PDF
Metasploit primary
n|u - The Open Security Community
 
PDF
Api security-testing
n|u - The Open Security Community
 
PDF
Introduction to TLS 1.3
n|u - The Open Security Community
 
PDF
Gibson 101 -quick_introduction_to_hacking_mainframes_in_2020_null_infosec_gir...
n|u - The Open Security Community
 
PDF
Talking About SSRF,CRLF
n|u - The Open Security Community
 
PPTX
Building active directory lab for red teaming
n|u - The Open Security Community
 
PPTX
Owning a company through their logs
n|u - The Open Security Community
 
PPTX
Introduction to shodan
n|u - The Open Security Community
 
PDF
Cloud security
n|u - The Open Security Community
 
PDF
Detecting persistence in windows
n|u - The Open Security Community
 
PPTX
Frida - Objection Tool Usage
n|u - The Open Security Community
 
PDF
OSQuery - Monitoring System Process
n|u - The Open Security Community
 
PDF
DevSecOps Jenkins Pipeline -Security
n|u - The Open Security Community
 
PDF
Extensible markup language attacks
n|u - The Open Security Community
 
PPTX
Linux for hackers
n|u - The Open Security Community
 
PDF
Android Pentesting
n|u - The Open Security Community
 
Hardware security testing 101 (Null - Delhi Chapter)
n|u - The Open Security Community
 
Osint primer
n|u - The Open Security Community
 
SSRF exploit the trust relationship
n|u - The Open Security Community
 
Nmap basics
n|u - The Open Security Community
 
Metasploit primary
n|u - The Open Security Community
 
Api security-testing
n|u - The Open Security Community
 
Introduction to TLS 1.3
n|u - The Open Security Community
 
Gibson 101 -quick_introduction_to_hacking_mainframes_in_2020_null_infosec_gir...
n|u - The Open Security Community
 
Talking About SSRF,CRLF
n|u - The Open Security Community
 
Building active directory lab for red teaming
n|u - The Open Security Community
 
Owning a company through their logs
n|u - The Open Security Community
 
Introduction to shodan
n|u - The Open Security Community
 
Cloud security
n|u - The Open Security Community
 
Detecting persistence in windows
n|u - The Open Security Community
 
Frida - Objection Tool Usage
n|u - The Open Security Community
 
OSQuery - Monitoring System Process
n|u - The Open Security Community
 
DevSecOps Jenkins Pipeline -Security
n|u - The Open Security Community
 
Extensible markup language attacks
n|u - The Open Security Community
 
Linux for hackers
n|u - The Open Security Community
 
Android Pentesting
n|u - The Open Security Community
 

Recently uploaded (20)

PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Teaching material agriculture food technology
LiaRayya
 
KodekX | Application Modernization Development
KodekX
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Encapsulation theory and applications.pdf
gurumoop
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 

Social Engineering

  • 1. Social Engineering (Because there is no patch for human stupidity)By: Shobhit GautamTwitter @sh0bhit105
  • 2. What Is Social Engineering?The art of manipulating people and getting them to do what you want.“Social Engineering - A euphemism for non-technical or low-technology means - such as lies, impersonation, tricks, bribes, blackmail, and threat - used to attack information systems.” "Social engineering" as an act of psychological manipulation was popularized by hacker-turned-consultant Kevin Mitnick.
  • 3. Common Types of Social EngineeringHuman-basedComputer-based
  • 4. Personality TraitsDiffusion of responsibilityChance for ingratiationTrust relationshipMoral dutyGuiltIdentificationDesire to be HelpfulCooperation
  • 5. Techniques for persuasionA Direct Route Systematic and logical statementA Peripheral Route Beat around the Bush Trigger strong emotions such as fear and excitement.
  • 6. Human Based methodsImpersonating IntimidationCreating confusionMay I help you?Can you help me?Building TrustAsk and It shall be given unto you seek and ye shall find.Dumpster Diving
  • 7. Computer BasedPopup WindowsMail attachmentsSpam, Chain Letters and HoaxesPhishing WebsitesUSB devices Key loggers
  • 8. Social Engineering Toolkit The Social Engineering Toolkit (SET) is a python-driven suite of custom tools which solely focuses on attacking the human element of penetration testing.SET was written by David Kennedy (ReL1K) and with a lot of help from the community it has incorporated attacks never before seen in an exploitation toolset. It’s main purpose is to augment and simulate social-engineering attacks and allow the tester to effectively test how a targeted attack may succeed.
  • 10. ./set
  • 11. How to Identify A Social Engineer?Does not provide contact informationAlways asks for forbidden informationRushing Activities Name-droppingIntimidationObserve for Small mistakes
  • 13. NOW