To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Ymmärsin!
Artwork

Tech Blackhat Breifings And Training Blackhat Usa 2005 Black Hat Vegas Blackhat Vegas Hacking Computer Security Speeches Presentations Spoken Word Video Audio Tech News Jeff Moss Podcasting Conventions
Sisällön tarjoaa Black Hat / CMP and Jeff Moss. Black Hat / CMP and Jeff Moss tai sen podcast-alustan kumppani lataa ja toimittaa kaiken podcast-sisällön, mukaan lukien jaksot, grafiikat ja podcast-kuvaukset. Jos uskot jonkun käyttävän tekijänoikeudella suojattua teostasi ilman lupaasi, voit seurata tässä https://fi.player.fm/legal kuvattua prosessia.

Samanlainen kuin Black Hat Briefings, Las Vegas 2005 [Audio] Presentations from the security conference

Player FM - Podcast-sovellus
Siirry offline-tilaan Player FM avulla!
Get it on App Store Get it on Google Play

Black Hat Briefings, Las Vegas 2005 [Audio] Presentations from the security conference « »
Joseph Klein: The Social Engineering Engagement Methodology - A Formal Testing process of the People and Process

40:54
 
Toista
Toistetaan
Jaa
 

MP3Jakson koti
Manage episode 155121483 series 1146744
Sisällön tarjoaa Black Hat / CMP and Jeff Moss. Black Hat / CMP and Jeff Moss tai sen podcast-alustan kumppani lataa ja toimittaa kaiken podcast-sisällön, mukaan lukien jaksot, grafiikat ja podcast-kuvaukset. Jos uskot jonkun käyttävän tekijänoikeudella suojattua teostasi ilman lupaasi, voit seurata tässä https://fi.player.fm/legal kuvattua prosessia.
The security of an organization is composed of technology, people and processes. In the last few years, many organizations have done a good job addressing technology but have focused very little on the people and processes. This presentation reviews the formal methodology for performing Social Engineering Engagements. The method is divided into four sections including the Pre-Engagement, Pre-Assessment, Assessment and Post-Assessment. The Pre-Engagement, is the sales process for performing the assessment. In this section, we will review the business justification and headlines of current attacks. Pre-Assessment if focused on identifying the scope of the project, limitation, targets and attack vectors. Also included are examples of what information must be gathers for use in the assessment and post assessment phase. The most interesting and tedious part is the actual assessment. In this section, we will discuss how to engage the target, utilize company information, how to achieve the goal and what to do when you are caught. Included in this section is also how and what to document about every contact. Post assessment is the analysis and reporting phase. In it, we will review documenting findings, and mapping them to recommendations. Joe Klein, CISSP is Senior Security Consultant at Honeywell and a member of the IPv6 Business Council. He performs network, application, web-application, wireless, source-code, host security reviews and security architecture design services for clients in the commercial and government space Prior to joining Honeywell, Joe worked as a consultant performing attack and penetration assessments for many significant companies in the IT arena. While consulting, Joe also taught "Hacking and Incident Handling", "IDS/IPS management" and "Managing Network Security" at a local college in Jacksonville Florida. He regularly speaking at conferences including Defcon, InfoSecWorld, PhreakNic and regional meetings including Infragard, ASIS and ISSA.>
  continue reading

61 jaksoa

#Tech #Blackhat Breifings And Training #Blackhat Usa 2005 #Black Hat Vegas #Blackhat Vegas #Hacking #Computer Security #Speeches #Presentations #Spoken Word #Video #Audio #Tech News #Jeff Moss #Podcasting #Conventions
Artwork

Joseph Klein: The Social Engineering Engagement Methodology - A Formal Testing process of the People and Process

Black Hat Briefings, Las Vegas 2005 [Audio] Presentations from the security conference

published

Toista Toistetaan
iconJaa
 
MP3Jakson koti
Manage episode 155121483 series 1146744
Sisällön tarjoaa Black Hat / CMP and Jeff Moss. Black Hat / CMP and Jeff Moss tai sen podcast-alustan kumppani lataa ja toimittaa kaiken podcast-sisällön, mukaan lukien jaksot, grafiikat ja podcast-kuvaukset. Jos uskot jonkun käyttävän tekijänoikeudella suojattua teostasi ilman lupaasi, voit seurata tässä https://fi.player.fm/legal kuvattua prosessia.
The security of an organization is composed of technology, people and processes. In the last few years, many organizations have done a good job addressing technology but have focused very little on the people and processes. This presentation reviews the formal methodology for performing Social Engineering Engagements. The method is divided into four sections including the Pre-Engagement, Pre-Assessment, Assessment and Post-Assessment. The Pre-Engagement, is the sales process for performing the assessment. In this section, we will review the business justification and headlines of current attacks. Pre-Assessment if focused on identifying the scope of the project, limitation, targets and attack vectors. Also included are examples of what information must be gathers for use in the assessment and post assessment phase. The most interesting and tedious part is the actual assessment. In this section, we will discuss how to engage the target, utilize company information, how to achieve the goal and what to do when you are caught. Included in this section is also how and what to document about every contact. Post assessment is the analysis and reporting phase. In it, we will review documenting findings, and mapping them to recommendations. Joe Klein, CISSP is Senior Security Consultant at Honeywell and a member of the IPv6 Business Council. He performs network, application, web-application, wireless, source-code, host security reviews and security architecture design services for clients in the commercial and government space Prior to joining Honeywell, Joe worked as a consultant performing attack and penetration assessments for many significant companies in the IT arena. While consulting, Joe also taught "Hacking and Incident Handling", "IDS/IPS management" and "Managing Network Security" at a local college in Jacksonville Florida. He regularly speaking at conferences including Defcon, InfoSecWorld, PhreakNic and regional meetings including Infragard, ASIS and ISSA.>
  continue reading

61 jaksoa

#Tech #Blackhat Breifings And Training #Blackhat Usa 2005 #Black Hat Vegas #Blackhat Vegas #Hacking #Computer Security #Speeches #Presentations #Spoken Word #Video #Audio #Tech News #Jeff Moss #Podcasting #Conventions

Усі епізоди

×
 
Loading …

Tervetuloa Player FM:n!

Player FM skannaa verkkoa löytääkseen korkealaatuisia podcasteja, joista voit nauttia juuri nyt. Se on paras podcast-sovellus ja toimii Androidilla, iPhonela, ja verkossa. Rekisteröidy sykronoidaksesi tilaukset laitteiden välillä.

 

Samanlainen kuin Black Hat Briefings, Las Vegas 2005 [Audio] Presentations from the security conference

Kuuntele yli 500 aihetta
Player FM - Podcast-sovellus
Siirry offline-tilaan Player FM avulla!
Get it on App Store Get it on Google Play

Pikakäyttöopas

Suosituimmat podcastit
Lindgren & Sihvonen
Urheilun ääni
Ykkösaamu
Afterwork
Kasper ja Mikko - Suomen suosituin podcast
Tuomiolla
Kolme miestä ja elokuvasauva
Mikä maksaa?
10X Finland
Pyöreä pöytä
Uutisraportti podcast
Stressivapaa johtaja | Näkökulmia henkilökohtaiseen kasvuun
Tiedeykkönen
Vinkistä vihiä
Radio Wyrd Podcast
Jäljillä
Player FM logo
Apua/UKK | Päivitä | Mainostaa
Taide|Liike-elämä|Komedia|Talous|Viihde|Uutiset|Politiikka|Uskonto
Tiede|Jalkapallo|Urheilu|Tarinankerronta|Teknologia|True crime
Tekijänoikeudet 2024 | Sivukartta | Tietosuojakäytäntö | Käyttöehdot | | Tekijänoikeus
Episode being played series thumbnail
icon icon
Nopeus
Sarjan asetukset
1x
1x
Volume
100%
icon
icon icon
/

Näytä Player FM kohteessa ...
Player FM
Browser
Chrome
Safari
Firefox