You are on page 1of 27

Social

Engineering



2|Page

&

Tamayoz team
Isecur1ty

2|Page

Social
Engineering

. 3

"

"

just a dream : Nelly :


.
2|Page

" "

I recommended by

inception
watching
CHristopher Nolan

HACEN

: .

)Engineering

(Social

) (Social Engineering .


.

3|Page





.
, , .

.





.

.
.
) (

.


) , , .(...

.




.
.
:
.25 .
3|Page



.. .



.

.

) Engineering

(Social

Evil Twin

, .Hacking

Evil Twin
Social Engineering


!

Face Off FBI


FBI Agents
.
Evil Twin
Social Engineering



!!
3|Page


.
:






.






.
Techniqes .
:









.
Information gathering about our goals :
Pen test




Evil Twin:
3|Page

* :
\





.
.
.
.
.


!
* :



.




.
:
!
!

%80
.


3|Page

""
!
access




Network
Device .


Advanced operators

.Google Hacking techniqe
:Google Hacking techniqe
Advanced operators

.
operators


operators
.operator

3|Page


operators syntax .
google hacking
Google Hacking For
Penteration Testers .Syngress
operator

:

site:www.facebook.

operator
victim
.
Intitle:"victim"-2

intitle operator
intitle tag .
Filetype:ctt "msn"-3

operator
contact list ctt
contact list
MSN.
operators

google hacking

.
3|Page

:


facebook ...twitteer


.
facebook

.Evil Twin

:


:
Maltego

Information gathering



ip
E-mail
. maltego
.

3|Page



pdf
maltego .



maltego .
.
fbextract.php :facebook
Atul Agarwal facebook
facebook
2|Page

profile
php script
facebook
.

:
terminal
:
php fbextract_php.bin


:
*****************************************************
* * Facebook name extract POC, by atul@secfence.com
*
* Usage : fbextract.php target_list output_file
* * Check the script for more details, such as random
*
* name generation and proxy settings
*****************************************************

text
email.txt
:
root@bt:/pentest/bluetooth# php fbextract_php.bin email facebook

3|Page

*****************************************************
* * Facebook name extract POC, by atul@secfence.com
* * Check the script for more details, such as random
*
* name generation and proxy settings
*****************************************************
target_list=email.txt output_file=facebook
.Output file already exists. Will be overwritten
.. Loaded 4 targets. Starting
elnimrelmasry@hotmail.com, 7984811,elnimr elmasry
aaa@hotmail.com, 9141731, INVALID
ee.ss@hotmail.com, 5855539, INVALID
bbb@hotmail.org, 2044078, INVALID

utput succesfuly
stored in
facebook


target_list ..output_file

:
.Evil Twin


maleware


password offline attack good
source .

.
:



2|Page




pent test
.

"
".


apllication
.
!!




!!

3|Page

)Engineering

(Social

, .Hacking


Evil Twin



.
:









.


.

!!


. " "

Neuronal code
.
5 :
4|Page

: " : "



.




.








.
:
" : "

.
: " : "
kernel

.

) (subconious

.
:

2|Page



.


""



" "
"
".






2|Page


.

:



.








:
* " :
"












,


3|Page


.

.




.
* hypnotic" :
"language






!!






" : ".








!
.
3|Page






.




.
* :



,
.


.NLP :

3|Page


.


. FBI

" "






. visual memory



.
:
: :



.subconcious
* :




3|Page







.
* "leading question":
! !
:



.

" :



"

.

!



.
* :

.


.
3|Page









,


.


.


.
:


.






.
!




4|Page

,




.
:







.


.





.



.


1
.

1 .
.
3|Page

3|Page

""Inception





.


.



.


.





.
: .

...
.. .2012

2|Page

" "Inception

.

You might also like