Kali Linux Social Engineering

Book Description

Effectively perform effi cient and organized social engineering tests and penetration testing using Kali Linux

Overview

• Learn about various attacks and tips and tricks to avoid them
• Get a grip on efficient ways to perform penetration testing.
• Use advanced techniques to bypass security controls and remain hidden while performing social engineering testing

In Detail

Kali Linux has a specific toolkit that incorporates numerous social-engineering attacks all into one simplified interface. The main purpose of SET (social engineering toolkit) is to automate and improve on many of the social engineering attacks currently out there.

This book is based on current advanced social engineering attacks using SET that help you learn how security can be breached and thus avoid it. You will attain a very unique ability to perform a security audit based on social engineering attacks.

Starting with ways of performing the social engineering attacks using Kali, this book covers a detailed description on various website attack vectors and client side attacks that can be performed through SET. This book contains some of the most advanced techniques that are currently being utilized by hackers to get inside secured networks. This book covers phishing (credential harvester attack), web jacking attack method, spear phishing attack vector, Metasploit browser exploit method, Mass mailer attack and more.

By the end of this book you will be able to test the security of any organization based on social engineering attacks.

What you will learn from this book

• Clone websites to gain a victim’s passwords and security information
• Undertake credential harvester attacks through spear-phishing and web jacking
• Perform client-side attacks through SET
• Get hands on with practical advice on eliciting identity details
• Counteract these techniques if they are being used against you

Approach

This book is a practical, hands-on guide to learning and performing SET attacks with multiple examples.

Who this book is written for

Kali Linux Social Engineering is for penetration testers who want to use BackTrack in order to test for social engineering vulnerabilities or for those who wish to master the art of social engineering attacks.

Table of Contents

Chapter 1: Introduction to Social Engineering Attacks
Chapter 2: Understanding Website Attack Vectors
Chapter 3: Performing Client-side Attacks through SET
Chapter 4: Understanding Social Engineering Attacks

中文：

书名：Kali Linux Social Engineering

使用Kali Linux有效执行高效和有组织的社会工程测试和渗透测试

概述

• 了解各种攻击以及避免攻击的技巧和技巧
• 掌握执行渗透测试的有效方法。
• 使用高级技术绕过安全控制并在执行社会工程测试时保持隐藏状态

详细地说

Kali Linux有一个特定的工具包，它将许多社会工程攻击整合到一个简化的界面中。SET(社会工程工具包)的主要目的是自动化和改进目前存在的许多社会工程攻击。

这本书是基于当前的高级社会工程攻击使用SET，帮助您了解如何安全可以被破坏，从而避免它。您将获得基于社会工程攻击执行安全审计的非常独特的能力。

从使用KALI执行社会工程攻击的方法开始，这本书涵盖了各种网站攻击矢量和可以通过SET执行的客户端攻击的详细描述。这本书包含了一些最先进的技术，目前黑客正在利用这些技术进入安全的网络。这本书涵盖了网络钓鱼(凭据收集器攻击)，网络劫持攻击方法，鱼叉式网络钓鱼攻击矢量，Metasploit浏览器攻击方法，群发邮件攻击等。

在本书结束时，您将能够测试任何基于社会工程攻击的组织的安全性。

你将从这本书中学到什么

• 克隆网站以获取受害者的密码和安全信息
• 通过鱼叉式网络钓鱼和网络劫持进行凭据采集器攻击
• Perform client-side attacks through SET
• 获取有关获取身份详细信息的实用建议
• 如果这些技巧被用来对付你，那就抵制它们

Approach

这本书是一本实用的，动手的指南，学习和执行集攻击与多个例子。

这本书是为谁写的

Kali Linux Social Engineering是为那些想要使用回溯来测试社会工程漏洞或希望掌握社会工程攻击艺术的渗透测试者而设计的。

目录表

第1章：社会工程攻击简介
第2章：了解网站攻击媒介
第3章：通过SET执行客户端攻击
第4章：了解社交工程攻击