Sharon Conheady Social Engineering in IT Security: Tools, Tactics, and Techniques

Annotation

Cutting-edge social engineering testing techniques"Provides all of the core areas and nearly everything [you] need to know about the fundamentals of the topic."--Slashdot Conduct ethical social engineering tests to identify an organization's susceptibility to attack. Written by a global expert on the topic, Social Engineering in IT Security discusses the roots and rise of social engineering and presents a proven methodology for planning a test, performing reconnaissance, developing scenarios, implementing the test, and accurately reporting the results. Specific measures you can take to defend against weaknesses a social engineer may exploit are discussed in detail. This practical guide also addresses the impact of new and emerging technologies on future trends in social engineering. Explore the evolution of social engineering, from the classic con artist to the modern social engineerUnderstand the legal and ethical aspects of performing a social engineering testFind out why social engineering works from a victim's point of viewPlan a social engineering test--perform a threat assessment, scope the test, set goals, implement project planning, and define the rules of engagementGather information through research and reconnaissanceCreate a credible social engineering scenarioExecute both on-site and remote social engineering testsWrite an effective social engineering reportLearn about various tools, including software, hardware, and on-site toolsDefend your organization against social engineering attacks