SE

Search for:


Archive for June, 2011

How Strong Is Your Schmooze Kids Edition

Thursday, June 23rd, 2011

Each Year Defcon is known for testing the limits and pushing the boundaries.  Defcon 19 will be no exception to that.  The Social-Engineer.Org SE KidsCTF2 How Strong Is Your Schmooze Kids EditionCTF at Defcon 19 is fully under way with some amazing surprises in store for this year.  But why stop there?  In conjunction with Defcon, Social-Engineer.Org is hosting the first ever KIDS CTF.  As part of the 2 day long Security For Kids Con, SEORG will be running a “How Strong is Your Schmooze – Kids Edition” Social-Engineering CTF just for the kids.

How will this work?

We are presently taking registrations for the Kids Social-Engineering CTF.  Once the submissions are in, kids will be placed into teams of 2 or 3.  Friday night of Defcon we will host a small lecture to educate the kids on some very interesting aspect of social engineering.

Then Saturday we will meet the teams again in the morning and give them a very special Social-Engineer.Org Dossier Packet that will contain clues they must solve to receive the next packet.  Each stage will involve either cipher decryption, lock picking, elicitation, pretexting and of course good old fashion social engineering skills.

The first 2 teams to achieve all the skills, get all their packets and solve all the clues will be dubbed the winners of the “How Strong is your Schmooze – Kids Edition” and will be presented their prizes at the closing ceremonies at Defcon on Sunday afternoon.

(more…)

Posted in Social Engineering | 1 Comment »

How I Won The Defcon Social Engineering CTF

Thursday, June 9th, 2011

With a slew of new contestants scouring the Internet collecting data for this years Social-Engineer.Org SECTF at Defcon 19 we thought we would give them a little help. Last years winner, known as phat32, wrote an article about the skills he needed to overcome all the obstacles and become the first ever winner of the Social-Engineer.Org SECTF and the winner of the game changing black badge…..

success baby1 How I Won The Defcon Social Engineering CTF
As the winner of the Social Engineering CTF that was held at Defcon 18, I was asked to write up a little summary of the event from my point of view. Let me start off by telling you about myself. I’m not a professional penetration tester nor do I have any formal social engineering training or experience. I’ve worked in IT for the past 13 years with the last 10 in Infosec. My previous roles have ranged from vendor technical support to security analyst and engineering for MSSP’s. It’s perhaps more important that nearly every job I’ve held since I was 15 has included some customer facing aspect. During that time I’ve learned a lot about how to successfully interact with people (an unintentional yet valuable side effect).

The contest was structured to be a true Capture the Flag challenge. The rules were explicitly spelled out, targets were provided by the judges, and points were based on pre-defined flags of information that you had to obtain during your call. The CTF was also, in many ways, similar to an SE engagement. We had a defined scope with specific objectives to achieve.

(more…)

Posted in How-Tos | No Comments »




SE Polls

SE CTF

Brad Smith