Book Image

Learn Social Engineering

Book Image

Learn Social Engineering

Overview of this book

This book will provide you with a holistic understanding of social engineering. It will help you to avoid and combat social engineering attacks by giving you a detailed insight into how a social engineer operates. Learn Social Engineering starts by giving you a grounding in the different types of social engineering attacks,and the damages they cause. It then sets up the lab environment to use different toolS and then perform social engineering steps such as information gathering. The book covers topics from baiting, phishing, and spear phishing, to pretexting and scareware. By the end of the book, you will be in a position to protect yourself and your systems from social engineering threats and attacks. All in all, the book covers social engineering from A to Z , along with excerpts from many world wide known security experts.

Related Content you might be interested in

Current Title:

Small book image
Learn Social Engineering
Apr, 2018 | 566 pages
Small book image
The Art of Social Engineering
Desilda Toska | Cesar Bravo
Oct, 2023 | 234 pages
Small book image
Hands-On Cybersecurity for Finance
Erdal Ozkaya | Milad Aslaner
Jan, 2019 | 308 pages
Small book image
Cybersecurity: The Beginner's Guide
Erdal Ozkaya
May, 2019 | 396 pages
Table of Contents (16 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Disclaimer
Free Chapter
1
Introduction to Social Engineering
Introduction to Social Engineering
Overview of social engineering
Applications of social engineering
The social engineering framework
Social engineering examples from Hollywood
Tips
Summary
2
The Psychology of Social Engineering – Mind Tricks Used
The Psychology of Social Engineering – Mind Tricks Used
Introduction
Modes of thinking
Microexpressions
NLP
Human buffer overflow
Tips
Summary
3
Influence and Persuasion
Influence and Persuasion
Introduction
Five fundamental aspects of persuasion
Setting up the environment
Reality alteration (framing)
Manipulation
Summary
4
Information Gathering
Information Gathering
Introduction
Gathering information about targets
Tips
Summary
5
Targeting and Recon
Targeting and Recon
Introduction
Banks
Old organizations
Organizational employees
Elderly people
Well-wishers
Tips
Summary
6
Elicitation
Elicitation
Introduction
Getting into conversations with strangers
Preloading
Avoiding elicitation
Learning the skill of elicitation
Tips
Summary
7
Pretexting
Pretexting
Introduction
Principles and planning of pretexting
Google hacking
Successful pretexting
Legal concerns of pretexting
Tools to enhance pretexts
Tips
Summary
8
Social Engineering Tools
Social Engineering Tools
The tools for social engineering
Tips
Summary
9
Prevention and Mitigation
Prevention and Mitigation
Learning to identify social engineering attacks
Mitigating social engineering attacks
Summary
10
Case Studies of Social Engineering
Case Studies of Social Engineering
What is social engineering?
Case studies of social engineering
Social engineering case study - Keepnet labs phishing simulation
Tips
Summary
11
Ask the Experts – Part 1
Ask the Experts – Part 1
Troy Hunt
Jonathan C. Trull
Marcus Murray and Hasain Alshakarti
Emre Tinaztepe
Milad Aslaner
12
Ask the Experts – Part 2
Ask the Experts – Part 2
Paula Januszkiewicz
Şükrü Durmaz and Raif Sarıca
Andy Malone
Chris Jackson
Daniel Weis
13
Ask the Experts – Part 3
Ask the Experts – Part 3
Raymond P.L. Comvalius
George Dobrea
Dr. Mitko Bogdansoki
Ozan Ucar and Orhan Sari
Sami Lahio
14
Ask the Experts – Part 4
Ask the Experts – Part 4
Oguzhan Filizlibay
Yalkin Demirkaya
Leyla Aliyeva
Aryeh Goretsky
Dr. Islam, MD Rafiqul, and Dr. Erdal Ozkaya
15
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Mitigating social engineering attacks

Phone calls

Phone calls have fast become common methods of social engineering. Social engineers are relying on caller ID spoofing techniques and the immediacy of a phone to get targets to comply with requests with no thinking space. Organizations are feeling the impact of phone-based social engineering attacks where IT staff are getting requests from callers claiming to be employees of the organization that have forgotten their passwords. As is the case in many organizations, the technicians will reset the password and tell the caller the new password even without having verified whether the caller is actually who they claim to be. Social engineers are also randomly targeting members of...

Previous Section
End of Section 3
Next Section