November 14th, 2011Episode 028 – Getting Physical With Social Engineering
Physical Social Engineering is a very interesting topic. Although it is the easiest method into a company it is also the hardest type of pentest to sell to clients. We discuss this topic with two experienced and professional physical social engineers, Sharon Conheady and Munya Kanaventi. Release Date November 14 2011
Contents |
Download
You can download it direct:
Getting Physical With Social Engineering – Episode 028
http://socialengineer.podbean.com/feed/
Subscribe
Feeds
Sponsors
Make sure to check out Social-Engineer.Com. The Social Engineering for Penetration Testers course is officially launched and will be in Seattle in March 2012 and Bristol UK in April 2012- NOW taking registrations
The Team at Social Engineer is very appreciative of all the support we get from Offensive Security. They have a new live training schedule on the website sign up now before the class fills up.
This episode is sponsored by Spy Associates.
Thank you to the EFF which continually supports and helps us.
The Social-Engineer CTF Report for Defcon 19 is now live and can be downloaded.
Plugs and What’s New
We are putting a call out there for any who want to submit an idea or your story for the Social-Engineer.Org Newsletter. Check out the Newsletter page for more info, or check out the archives at that page. Email us at contribute@social-engineer.org with your submission or idea.
If you loved the new intro music then you MUST run over to the Dual Core website and check out the awesome geekcore rap they have there.
A lot of people are asking who makes our graphics and web design… Get a hold of Tom at Tick Tock Computers… just don’t ask to steal my design suckas.
We have a brand new poll going up on the site this week make sure to keep checking the social engineering poll.
Keep in mind we are still trying to support our good friend Brad Smith and asking people to help them with their medical bills.. We will continue to update you on Brad’s condition and we appreciate all your help with donations.
Podcast Notes
The topic of physical social engineering is very interesting to us. Talking to two people who lead this industry we can get a clear picture of how it is used, some struggles and ideas of why it is so important. We discussed questions like:
What is the hardest part of physical pen work?
How much does physical appearance affect the physical work?
How do you work around physical appearance limitations?
Is there anything unique that comes up in terms of setting up permission for the physical work?
Would you climb a fence? Pick a lock? Break a window?
Do you physically remove anything from the site? If so, how to do know what is “safe” to remove?
How much do cultural differences affect the outcome of the work? Physical locations?
How much do costumes come into the job? (Dressing up like a delivery person, etc.)
How far do you go with fake identities? Fake ID? Fake Resumes? What else?
How much of a fake personality do you use when doing physical work vs how much is really you?
How much of a plan do you make before starting the engagement?
How much does your gender play a role into your pretext’s?
Does gender play a role in your success’ and failures?
Do you deploy your SE skills when trying to get a date/ when you are on a date?
And much more!
Sharon is training a very intense Social Engineering Class in Vienna THIS MONTH. They have graciously offered to give a 10% discount to anyone who mentions this code when signing up: soceng-ritng
ENJOY!
Get Involved
Got a great idea for an upcoming podcast? Send an email to contribute -@- social-engineer.org
Enjoy the Outtro Music? Check out DualCore Trust Me especially for social-engineer.org for more of his awesome work!
My Podcast Alley feed! {pca-be2a387fe7d447a1770391408024ad46}
