Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Social Engineering Survey

  1. #1
    Just burned his ISO
    Join Date
    Apr 2007
    Posts
    2

    Default Social Engineering Survey

    Hello All

    I am trying to write a survey on SE to test the ability of users to ID a SE attack. Here is a brainstorm I just which I could get suggestions:

    Thank You For your time

    How frequently you use computers?
    Just At Work
    Work and Home for Emails and Social
    Every time for everything

    What type of computer user do you consider yourself?
    Novice
    Power User
    Expert
    Hacker

    What Type of Operating System do you use?
    Windows
    MAC
    Linux

    Have you received an email, a call or letter within the past 6 months that you suspect was an attempt to get your personal details for fraudulent purpose?
    Yes
    No


    What form did it take, if you answered "Yes" above?
    Letter
    Email
    Phone
    Letter and Email
    Phone and Email

    Do you have a method to validate your Bank or utility supplier when they call?
    Yes
    No
    I dont know

    How do you get rid of your sensitive letters or bills?
    Bin It
    Shred It
    Keep It

    Have you heard the term “phishing” before?
    Yes
    No

    Have you heard the term “Social Engineering” before?
    Yes
    No

    What do you think it means if you have answered "Yes" above?
    Engineers working socially
    Method use by bad guys to get information
    A study of social science

    If you suspect you have become a victim of identity theft, who will you contact first?
    Police
    Bank
    Both
    Dont know

    If someone shows up at your door, claiming to be from your utility supplier, do you check their ID card?
    Yes
    No
    Sometimes
    It depends

    Do you think is neccessary to call a company to verify the identify of its employee if presented with an ID Card?
    Yes
    No
    Dont think is necessary
    It is a waste of time

  2. #2
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default Re: Social Engineering Survey

    This really has nothing to do with BackTrack Linux.
    However here is what you should do, go to Social Engineering - Security Through Education , one of our sister sites as it were.
    They have tools and resources to help you out. There is also an IRC channel on the above site.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  3. #3
    Member
    Join Date
    Dec 2007
    Location
    The Netherlands
    Posts
    267

    Default Re: Social Engineering Survey

    I'd say it's a pretty good survey, can't really add anything to it. Perhaps add something about secure connections to websites (SSL or the green bar in browsers). I hope you don't expect us to fill out the survey though, BackTrack users probably aren't your target audience.
    Student Systems Administration and Network Engineering, second year.
    Don't PM me with questions, unless very specific. Otherwise, use the forums so everyone can potentially benefit from it.

  4. #4
    Just burned his ISO
    Join Date
    Apr 2007
    Posts
    2

    Default Re: Social Engineering Survey

    Hello

    Thank You for the replies, I understand this is a BT4 forum. I am posting this on every site where I know security experts gather, this survey will be intended for regular network users and the purpose is to test the effectiveness of the IA training.

    Thanks

  5. #5
    Senior Member Thorn's Avatar
    Join Date
    Jan 2010
    Location
    The Green Dome
    Posts
    1,509

    Default Re: Social Engineering Survey

    Quote Originally Posted by yoyosrt View Post
    What Type of Operating System do you use?
    Windows
    MAC
    Linux
    That list is WAY too narrow, and too short, I typically use a minimum of 5 or 6 OSs per day. Sure, many are *nix variations, but only one is a pure "Linux". If you're going to lump all *nixes, then get rid of "Mac".

    Plus, it really needs an "All of the above." or allow multiple choices. I've used about something on the order of thirty OS's over the last 40 years, from mainframes to minis to PCs to embedded. Listing only three "just don't cut it".

    Quote Originally Posted by yoyosrt View Post
    How do you get rid of your sensitive letters or bills?
    Bin It
    Shred It
    Keep It
    It needs "Burn It". (For the truly paranoid you could have "Shred, burn, and then stir the ashes." )
    Thorn
    Stop the TSA now! Boycott the airlines.

  6. #6
    Member
    Join Date
    Dec 2007
    Location
    The Netherlands
    Posts
    267

    Default Re: Social Engineering Survey

    I somehow doubt people who program mainframes, or run Haiku are the target audience of this survey. I'd go out on a limb and guess it's aimed at your average joe, judging from the questions, and the 3 main OSes are more than proficient imho?
    Student Systems Administration and Network Engineering, second year.
    Don't PM me with questions, unless very specific. Otherwise, use the forums so everyone can potentially benefit from it.

  7. #7
    Senior Member Thorn's Avatar
    Join Date
    Jan 2010
    Location
    The Green Dome
    Posts
    1,509

    Default Re: Social Engineering Survey

    Quote Originally Posted by Citruspers View Post
    I somehow doubt people who program mainframes, or run Haiku are the target audience of this survey. I'd go out on a limb and guess it's aimed at your average joe, judging from the questions, and the 3 main OSes are more than proficient imho?
    OK, I'll stipulate that I may be one of the few that still look at things like i5/OS, but even if I'm outside the demographic, then why isn't it just *nix vs. Windows? Despite what the Apple fanboy's claim, Mac OS X isn't another OS, it's just another *nix. Right now the survey is asking "Do you like Green, Red with a pink border or Red with a light pink border?" Besides, he does ask about proficiency, and it goes all the way from "Novice" to "Hacker". If he's including "Experts" and "Hackers", then giving them the choices they require to properly answer is only fair.

    Either it has one choice too many, or it doesn't have nearly enough.
    Thorn
    Stop the TSA now! Boycott the airlines.

  8. #8
    Senior Member hypervista's Avatar
    Join Date
    Feb 2010
    Posts
    121

    Default Re: Social Engineering Survey

    I refuse to be social engineered into answering this survey... The survey OP could gain a lot of insight into my MO if I answer.....

  9. #9
    Member skinnypuppy's Avatar
    Join Date
    Jan 2010
    Location
    09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
    Posts
    154

    Default Re: Social Engineering Survey

    To the OP, may want to check out The Art of Deception by Kevin Mitnick (a good read!) as well as the talks on social engineering by Bern (most can be found on packetstormsecurity.org).

    There are numerous sites on the web pertaining to social engineering that will help you to finesse this survey that you are working on.
    I may have been born with a silver spoon in my mouth but it does not mean I like to be spoon fed.

  10. #10
    Member
    Join Date
    Dec 2007
    Location
    The Netherlands
    Posts
    267

    Default Re: Social Engineering Survey

    Good point. However, if we agree the target audience ranges from novice to hacker, I doubt the novice demographic knows their mac is *nix based.
    For the sake of keeping it simple, can we say there are 3 major operating systems, namely Windows, OSX, and various desktop linux flavours bundled under the name linux/*nix?
    I know it's not technically correct but you have to make some concessions for the mainstream?
    Student Systems Administration and Network Engineering, second year.
    Don't PM me with questions, unless very specific. Otherwise, use the forums so everyone can potentially benefit from it.

Page 1 of 2 12 LastLast

Similar Threads

  1. i can't fix Social Engineering Toolkit
    By spo0fer in forum Beginners Forum
    Replies: 1
    Last Post: 05-02-2010, 04:58 PM
  2. Social Engineering at its best
    By muts in forum OLD BackTrack News
    Replies: 2
    Last Post: 02-28-2010, 01:37 PM
  3. Social Engineering - need some help
    By williamc in forum OLD Pentesting
    Replies: 27
    Last Post: 07-22-2008, 07:08 AM
  4. Social Engineering Questions
    By monsieurdozier in forum OLD Newbie Area
    Replies: 14
    Last Post: 03-26-2008, 09:44 PM
  5. Social Engineering
    By elazar in forum OLD General IT Discussion
    Replies: 0
    Last Post: 09-18-2007, 05:31 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •