Skip to content

A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about Social Engineering in Cybersecurity

License

Notifications You must be signed in to change notification settings

paulveillard/cybersecurity-social-engineering

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Social Engineering

Welcome To The World of Social Engineering in Cybersecurity:

A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about Social Engineering in Cybersecurity. Thanks to all contributors, you're awesome and wouldn't be possible without you! Our goal is to build a categorized community-driven collection of very well-known resources.

Social engineering is the act of exploiting human weaknesses to gain access to personal information and protected systems.

social

Table of Contents

  1. Online Courses
  2. Capture the Flag
  3. Psychology Books
  4. Books
  5. Documentation
  6. Tools
  7. Miscellaneus
  8. OSINT
  9. Contribution
  10. License

^ back to top ^

Online Courses

Capture the Flag

Social-Engineer.com - The SECTF, DEFCON

^ back to top ^

Psychology Books

Most of these books covers the basics of psychology useful for a social engineer.

^ back to top ^

Social Engineering Books

^ back to top ^

Documentation

Social Engineer resources

  • The Social-Engineer portal - Everything you need to know as a social engineer is in this site. You will find podcasts, resources, framework, informations about next events, blog ecc...

Tools

Useful tools

  • Tor - The free software for enabling onion routing online anonymity
  • SET - The Social-Engineer Toolkit from TrustedSec

Phishing tools

  • Gophish - Open-Source Phishing Framework
  • King Phisher - Phishing campaign toolkit used for creating and managing multiple simultaneous phishing attacks with custom email and server content.
  • wifiphisher - Automated phishing attacks against Wi-Fi networks
  • PhishingFrenzy - Phishing Frenzy is an Open Source Ruby on Rails application that is leveraged by penetration testers to manage email phishing campaigns.
  • Evilginx2 - MITM attack framework used for phishing credentials and session cookies from any Web service
  • Lucy Phishing Server - (commercial) tool to perform security awareness trainings for employees including custom phishing campaigns, malware attacks etc. Includes many useful attack templates as well as training materials to raise security awareness.

^ back to top ^

Miscellaneous

Slides

Videos

^ back to top ^

Articles

Movies

^ back to top ^

OSINT

OSINT Resources

OSINT Tools

  • XRay - XRay is a tool for recon, mapping and OSINT gathering from public networks.
  • Intel Techniques Online Tools - Use the links to the left to access all of the custom search tools.
  • Buscador - A Linux Virtual Machine that is pre-configured for online investigators
  • Maltego - Proprietary software for open source intelligence and forensics, from Paterva.
  • theHarvester - E-mail, subdomain and people names harvester
  • creepy - A geolocation OSINT tool
  • exiftool.rb - A ruby wrapper of the exiftool, a open-source tool used to extract metadata from files.
  • metagoofil - Metadata harvester
  • Google Hacking Database - a database of Google dorks; can be used for recon
  • Google-Dorks - Common google dorks and others you prolly don't know
  • GooDork - Command line go0gle dorking tool
  • dork-cli - Command-line Google dork tool.
  • Shodan - Shodan is the world's first search engine for Internet-connected devices
  • recon-ng - A full-featured Web Reconnaissance framework written in Python
  • github-dorks - CLI tool to scan github repos/organizations for potential sensitive information leak
  • vcsmap - A plugin-based tool to scan public version control systems for sensitive information
  • Spiderfoot - multi-source OSINT automation tool with a Web UI and report visualizations
  • DataSploit - OSINT visualizer utilizing Shodan, Censys, Clearbit, EmailHunter, FullContact, and Zoomeye behind the scenes.
  • snitch - information gathering via dorks
  • Geotweet_GUI - Track geographical locations of tweets and then export to google maps.

^ back to top ^

Contribution

Your contributions and suggestions are heartily♥ welcome. (✿◕‿◕). Please check the Contributing Guidelines for more details.

^ back to top ^

License

MIT License & cc license

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.

To the extent possible under law, Paul Veillard has waived all copyright and related or neighboring rights to this work.

About

A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about Social Engineering in Cybersecurity

Topics

Resources

License

Code of conduct

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published