Penetration Testing mailing list archives

Re: Pen-Test and Social Engineering

From: Marco Ramilli <gramill () tin it>
Date: Sun, 05 Feb 2006 19:18:15 +0100

burzella () inwind it wrote:

Hi
In yuor opinion, can a Social Engineering test be considered part of a Pen-Test?

Thanks

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:Hackers are concentrating their efforts on attacking applications on yourwebsite. Up to 75% of cyber attacks are launched on shopping carts, forms,login pages, dynamic content etc. Firewalls, SSL and locked-down servers arefutile against web application hacking. Check your website for vulnerabilitiesto SQL injection, Cross site scripting and other web attacks before hackers do!Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Obviously ! Social Engineering is the penTest's King.
In a final documentation is essential write about this kind of attack.

It's really a normal attack like MITM or DoS, some time Social is moredangerous than other kind of attack.



--
*************************************
Dott. Ing. Marco Ramilli aka eth0up

Ric Security System:
- http://www.rrsecurity.info
- eth0up () rrsecurity info

- http://cesena.ing2.unibo.it
- marco.ramilli () studio unibo it

personal:
- gramill () tin it
- marco.ramilli () mac com

************************************


------------------------------------------------------------------------------

Audit your website security with Acunetix Web Vulnerability Scanner:Hackers are concentrating their efforts on attacking applications on yourwebsite. Up to 75% of cyber attacks are launched on shopping carts, forms,login pages, dynamic content etc. Firewalls, SSL and locked-down servers arefutile against web application hacking. Check your website for vulnerabilitiesto SQL injection, Cross site scripting and other web attacks before hackers do!Download Trial at:


http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Pen-Test and Social Engineering burzella (Feb 05)
- Re: Pen-Test and Social Engineering Marco Ramilli (Feb 05)
- Re: Pen-Test and Social Engineering Steven (Feb 05)
- RE: Pen-Test and Social Engineering John (Feb 05)
- Re: Pen-Test and Social Engineering Peter Wood (Feb 05)
- RE: Pen-Test and Social Engineering K K Mookhey (NII) (Feb 05)
- Re: Pen-Test and Social Engineering Petr . Kazil (Feb 05)
- Re: Pen-Test and Social Engineering Louis Lerman (Feb 05)
- Re: Pen-Test and Social Engineering Fixer (Feb 05)
- Re: Pen-Test and Social Engineering Sysmin Sys73m47ic (Feb 05)
- Re: Pen-Test and Social Engineering Serg Belokamen (Feb 05)
- RE: Pen-Test and Social Engineering Terry Vernon (Feb 05)

(Thread continues...)