Becoming a Successful Elicitor
From Learn to be a true Social Engineer
Really we can simply say, "How to be a great communicator".
Steps To Success
The steps to becoming a great elicitor may seem simplistic, but initiating these on the fly is not so easy, especially without notes and to make it seem natural.
- To become a successful elicitor it’s crucial to understand how to communicate with people.
- You must learn to be adaptive, this means your communication must be made to fit the environment and situation.
- It is crucial to build a bond or relationship with the potential "target".
- Your communications should also match your pretext, otherwise you might seem out of place to the people your communicating with. If your pretext is a member of the IT staff then you need to know, understand, and be able to effectively communicate enough technical information to appear convincing.
- Really it all boils down to this: You must know how to ask intelligent questions that will force a response. Questions that can be answered with a simple "Yes" or "No" are not good questions at all.
Consider the questions "Hot out today isn't it?" and "What do you think of today's weather?". There is a world of difference between them. One almost forces the target to just nod and say "Yup" or "Not too bad"... whereas the other might elicit a response like, "I think it is too hot today. It makes my allergies act up". The second response provides much more valuable information about this person.
DOD Polygraph Course
Brad Smith, aka theNURSE, donated a copy of the DOD's Polygraph Passing Course given to their agents. In this course it outlines many different aspects of a good social engineer that all tie into elicitation, all of which will be discussed in this framework.
Types of Questions
First we need to outline the types of questions we must use to be a great elicitor.
Take a note of this wiki page on "How To Ask Open Ended Questions". When we ask good open-ended questions we will learn about a person's perspectives, values, and goals as well as interesting little tidbits about them that can be used later on. In addition, this builds(creates?) a feeling of closeness and rapport with the target.
This type of question does not tell the person how we want them to answer, there is no leading or directing, it is just.... neutral and can go either way. "How do you like the weather today?" is an example of a neutral question.
These type of questions really force or try to lead the person down the path to the answer you want. "This weather is pretty hot isn't it?" Beware though, these questions should only be used after you have penetrated resistance, otherwise you can turn the person off and loose all control.
This is a powerful tool because we can put the person at ease by assuming certain things about them, their actions or thoughts. "Whats the most paper you've ever stolen from the company at once?" This question assumes they have stolen paper or other things and may put them at ease that they don't have to admit it. Whatever the answer, it is key to act as if you expected it or you loose the power in the elicitation.
Now that we have in mind the type of questions we can use we should also keep these key points in mind:
- Too many questions can shut down the interaction
- Too little may make the person uncomfortable
- Ask only one question at a time, too many will cloud the answer you get
- Use a narrowing approach to questions to gain the most information
- i.e. Neutral Questions -----> Open Ended -----> Closed Ended -----> (last resort) Highly Directed
- Asking "why" questions will automatically put up a persons defenses. This can be bad, unless you are trying to elicit their coping techniques then this is very useful.
- ↑ http://social-engineer.org/wiki/archives/BecomeSuccessElicit/dodpi-interrogation.pdf DOD Polygraph Course
- ↑ http://www.wikihow.com/Ask-Open-Ended-Questions
- ↑ http://en.wikipedia.org/wiki/Closed-ended_question