Social Engineering Using SET

CompTIA Security+ Domain:
Domain 3: Threats and Vulnerabilities

CompTIA Security+ Objective Mapping:
Objective 3.3: Summarize social engineering attacks and the associated effectiveness with each attack.

CEH Exam Domain:
Social Engineering

Overview

Social engineering is a technique that attackers use to entice individuals, often with a lack of knowledge of computer security, to run programs, click links, or give out sensitive information. This lab demonstrates how social engineering techniques can be utilized.

outcomes

In this lab, you will learn to:

Compromise a Windows Server with the Social Engineering Toolkit
Execute a spear-phishing attack
Exploit the malware to steal data on a system

Courses

Ethical Hacking and Systems Defense

Information Security Fundamentals

Key terms and descriptions

Social Engineering Toolkit

tools that can be used by an attacker to exploit victims

meterpreter

A meterpreter payload can be used by an attacker for control over a victim’s system.

Kali

a Linux distribution used for penetration testing or for hacking

Opera

a free browser and email client

spear phish

used to entice an individual to check a link or open an attachment in an email