From the course: Performing a Technical Security Audit and Assessment
Join today to access over 25,500 courses taught by industry experts.
Conduct social engineering
From the course: Performing a Technical Security Audit and Assessment
Conduct social engineering
- [Instructor] Social engineering is a tactic used by security assessors to trick people into disclosing sensitive information. The information they're going after often includes usernames, passwords, and other sensitive data, such as credit card or social security numbers. Attackers can conduct social engineering in a variety of ways, including face-to-face, or over the phone through simple lying, also called pretexting, malicious websites using phishing, email, using phishing or spear phishing, and text, or instant messages, also known as smishing. Conducting social engineering during a security assessment evaluates the effectiveness of an organization's security awareness training. Successful breaches during the assessment should be documented as findings. A recommended remediation could be to improve user security training or increase its frequency. On the other hand, failed social engineering attempts are a positive result, and assessors should note that in the final report. Lisa…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
(Locked)
Baseline skill sets for target vulnerability validation49s
-
(Locked)
Crack passwords1m 53s
-
Password cracking tool demo3m 23s
-
(Locked)
Challenge: Install and run a password cracker1m 3s
-
(Locked)
Solution: Install and run a password cracker2m 27s
-
(Locked)
Conduct penetration tests3m 3s
-
(Locked)
Penetration testing tool demo2m 46s
-
(Locked)
Conduct social engineering1m 15s
-
(Locked)
-
-
-
-