Penetration Testing mailing list archives
Re: Pen-Test and Social Engineering
From: Marco Ramilli <gramill () tin it>
Date: Sun, 05 Feb 2006 19:18:15 +0100
burzella () inwind it wrote:
Hi In yuor opinion, can a Social Engineering test be considered part of a Pen-Test? Thanks ------------------------------------------------------------------------------Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at:http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Obviously ! Social Engineering is the penTest's King. In a final documentation is essential write about this kind of attack.It's really a normal attack like MITM or DoS, some time Social is more dangerous than other kind of attack.
-- ************************************* Dott. Ing. Marco Ramilli aka eth0up Ric Security System: - http://www.rrsecurity.info - eth0up () rrsecurity info - http://cesena.ing2.unibo.it - marco.ramilli () studio unibo it personal: - gramill () tin it - marco.ramilli () mac com************************************
------------------------------------------------------------------------------Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Pen-Test and Social Engineering burzella (Feb 05)
- Re: Pen-Test and Social Engineering Marco Ramilli (Feb 05)
- Re: Pen-Test and Social Engineering Steven (Feb 05)
- RE: Pen-Test and Social Engineering John (Feb 05)
- Re: Pen-Test and Social Engineering Peter Wood (Feb 05)
- RE: Pen-Test and Social Engineering K K Mookhey (NII) (Feb 05)
- Re: Pen-Test and Social Engineering Petr . Kazil (Feb 05)
- Re: Pen-Test and Social Engineering Louis Lerman (Feb 05)
- Re: Pen-Test and Social Engineering Fixer (Feb 05)
- Re: Pen-Test and Social Engineering Sysmin Sys73m47ic (Feb 05)
- Re: Pen-Test and Social Engineering Serg Belokamen (Feb 05)
- RE: Pen-Test and Social Engineering Terry Vernon (Feb 05)
(Thread continues...)