You're reading from Hands-On Ethical Hacking Tactics Strategies, tools, and techniques for effective cyber defense

Product type Paperback

Published in May 2024

Publisher Packt

ISBN-13 9781801810081

Length 464 pages

Edition 1st Edition

Concepts

Ethical Hacking

Author (1):

Shane Hartman

View More author details

Table of Contents (20) Chapters

Preface

1. Part 1:Information Gathering and Reconnaissance

2. Chapter 1: Ethical Hacking Concepts FREE CHAPTER

3. Chapter 2: Ethical Hacking Footprinting and Reconnaissance

4. Chapter 3: Ethical Hacking Scanning and Enumeration

5. Chapter 4: Ethical Hacking Vulnerability Assessments and Threat Modeling

6. Part 2:Hacking Tools and Techniques

7. Chapter 5: Hacking the Windows Operating System

8. Chapter 6: Hacking the Linux Operating System

9. Chapter 7: Ethical Hacking of Web Servers

10. Chapter 8: Hacking Databases

11. Chapter 9: Ethical Hacking Protocol Review

12. Chapter 10: Ethical Hacking for Malware Analysis

13. Part 3:Defense, Social Engineering, IoT, and Cloud

14. Chapter 11: Incident Response and Threat Hunting

15. Chapter 12: Social Engineering

16. Chapter 13: Ethical Hacking of the Internet of Things

17. Chapter 14: Ethical Hacking in the Cloud

18. Index

Why subscribe?

19. Other Books You May Enjoy

Phases of a social engineering attack

Social engineering attacks are not complicated and do not necessarily require a high level of technological expertise to launch. In its simplest terms, a social engineering attack can be broken down into the following phases:

Conducting research: During the research stage, data about a target company is gathered. The vast majority of it will come from browsing the target organization’s website, discovering information online, or perhaps even speaking with personnel; other methods may be used to gather information, even dumpster diving when possible. We’ll discuss some of these methods in detail in the next section.
Selecting the target: An attacker chooses the victim during the target phase from among other workers at the company. The attacker may look for targets whose roles involve company communications; this way, the attacker can attempt to get more information about the company and personnel. Sometimes the attacker...