Reconnaissance: Social Media - Paiet/Tech-Journal-for-Everything GitHub Wiki
Reconnaissance: Techniques Pt.4
- Social media profiling
- Gathering info about target through social media outlets
- Location
- Personnel
- Key Contacts
- Profiling
- Username/Password guessing
- Social Engineering campaign
- Email addresses
- Employee project details
- Social engineering
- The art of human hacking
- Getting users to give access or info that they shouldn't
- Methods
- Create a sense of urgency through...
- Intimidation
- Impersonation (of some kind of authority)
- Feigning helplessness
- Create a sense of amicability through...
- Charm
- Flattery
- Impersonation of authority
- Social Engineering Toolkit (SET)
- Cobalt Strike
- Phishing
- Spear Phishing
- SET/Cobalt Strike
- DEMO: Don't show setup. Just show it running.
setoolkit
- Run credential harvester
- Use internet connected adapter
- Use browser incognito
- Well crafted email