Social engineering, in the context of security, is understood to mean the art of manipulating people into performing actions or divulging confidential information. While it is similar to a confidence trick
or simple fraud, the term typically applies to trickery or deception
for the purpose of information gathering, fraud, or computer system
access; in most cases the attacker never comes face-to-face with the victims.
The Social-Engineer Toolkit (SET) is specifically designed to perform
advanced attacks against the human element. Originally this tool was
designed to be released with the http://www.social-engineer.org
launch and has quickly became a standard tool in a penetration testers
arsenal. SET was written by David Kennedy (ReL1K) and with a lot of help
from the community in incorporating attacks never before seen in an
exploitation toolset. The attacks built into the toolkit are designed to
be targeted an focused attacks against a person or organization used
during a penetration test.(http://www.offensive-security.com/metasploit-unleashed/SET)
Tidak ada komentar:
Posting Komentar