Social engineering in IT security : tools, tactics, and techniques
INITIAL_TITLE_SRCH:
Social engineering in IT security : tools, tactics, and techniques
AUTHOR:
Conheady, Sharon.
ISBN:
9780071818469
PUBLICATION_INFO:
New York : McGraw-Hill Education, c2014.
PHYSICAL_DESC:
xviii, 254 p. : ill. ; 24 cm
GENERAL_NOTE:
Includes index.
ABSTRACT:
"Cutting-edge social engineering testing techniquesConduct ethical social engineering tests to identify an organization's susceptibility to attack. Written by a global expert on the topic, Social Engineering in IT Security discusses the roots and rise of social engineering and presents a proven methodology for planning a test, performing reconnaissance, developing scenarios, implementing the test, and accurately reporting the results. Specific measures you can take to defend against weaknesses a social engineer may exploit are discussed in detail. This practical guide also addresses the impact of new and emerging technologies on future trends in social engineering. Explore the evolution of social engineering, from the classic con artist to the modern social engineer Understand the legal and ethical aspects of performing a social engineering test Find out why social engineering works from a victim's point of view Plan a social engineering test--perform a threat assessment, scope the test, set goals, implement project planning, and define the rules of engagement Gather information through research and reconnaissance Create a credible social engineering scenario Execute both on-site and remote social engineering tests Write an effective social engineering report Learn about various tools, including software, hardware, and on-site tools Defend your organization against social engineering attacks "-- Provided by publisher.
"This book presents a methodology that can be used to perform an ethical social engineer test. It also covers the background of social engineering, the legal and ethical issues involved, why social engineering works, hardware and software tools that can be used for social engineering, and finally a discussion on the future of social engineering. It provides an introduction to social engineering and discusses the ethical and legal aspects of performing a social engineering test. It also discusses how to plan a social engineering test, including performing a threat assessment, scoping the test and setting goals, project planning and defining the rules of engagement.It talks about creating a believable scenario for the test and executing the test. It also covers writing a social engineering report and ends with a look at some of the new technology and its implications for social engineering"-- Provided by publisher.
Machine generated contents note: 1. Social Engineering's Evolution -- 2. The Ethical and Legal Aspects of Social Engineering -- 3. Practical Social Engineering and Why it Works -- 4. Planning Your Social Engineering Test -- 5. Reconnaissance & Information Gathering -- 6. Scenario Creation & Testing -- 7. Executing Your Social Engineering Test -- 8. Reporting -- 9. The Social Engineering Arsenal & Tools of the Trade -- 10. Defense Against Social Engineering Attacks -- 11. Tomorrow's Social Engineering Attacks .
SUBJECT_TERM:
SUBJECT:
| Social engineering. |
BIBSUMMARY:
"Cutting-edge social engineering testing techniquesConduct ethical social engineering tests to identify an organization's susceptibility to attack. Written by a global expert on the topic, Social Engineering in IT Security discusses the roots and rise of social engineering and presents a proven methodology for planning a test, performing reconnaissance, developing scenarios, implementing the test, and accurately reporting the results. Specific measures you can take to defend against weaknesses a social engineer may exploit are discussed in detail. This practical guide also addresses the impact of new and emerging technologies on future trends in social engineering. Explore the evolution of social engineering, from the classic con artist to the modern social engineer Understand the legal and ethical aspects of performing a social engineering test Find out why social engineering works from a victim's point of view Plan a social engineering test--perform a threat assessment, scope the test, set goals, implement project planning, and define the rules of engagement Gather information through research and reconnaissance Create a credible social engineering scenario Execute both on-site and remote social engineering tests Write an effective social engineering report Learn about various tools, including software, hardware, and on-site tools Defend your organization against social engineering attacks "--
"This book presents a methodology that can be used to perform an ethical social engineer test. It also covers the background of social engineering, the legal and ethical issues involved, why social engineering works, hardware and software tools that can be used for social engineering, and finally a discussion on the future of social engineering. It provides an introduction to social engineering and discusses the ethical and legal aspects of performing a social engineering test. It also discusses how to plan a social engineering test, including performing a threat assessment, scoping the test and setting goals, project planning and defining the rules of engagement.It talks about creating a believable scenario for the test and executing the test. It also covers writing a social engineering report and ends with a look at some of the new technology and its implications for social engineering"--
Machine generated contents note: 1. Social Engineering's Evolution -- 2. The Ethical and Legal Aspects of Social Engineering -- 3. Practical Social Engineering and Why it Works -- 4. Planning Your Social Engineering Test -- 5. Reconnaissance & Information Gathering -- 6. Scenario Creation & Testing -- 7. Executing Your Social Engineering Test -- 8. Reporting -- 9. The Social Engineering Arsenal & Tools of the Trade -- 10. Defense Against Social Engineering Attacks -- 11. Tomorrow's Social Engineering Attacks .