Cover
Foreword
Preface
1 A Look into the New World of Professional Social Engineering
1. What Has Changed?
2. Why Should You Read This Book?
3. An Overview of Social Engineering
4. The SE Pyramid
5. What's in This Book?
6. Summary
2 Do You See What I See?
1. A Real-World Example of Collecting OSINT
2. Nontechnical OSINT
3. Tools of the Trade
4. Summary
3 Profiling People Through Communication
1. The Approach
2. Enter the DISC
3. Summary
4 Becoming Anyone You Want to Be
1. The Principles of Pretexting
2. Summary
5 I Know How to Make You Like Me
1. The Tribe Mentality
2. Building Rapport as a Social Engineer
3. The Rapport Machine
4. Summary
6 Under the Influence
1. Principle One: Reciprocity
2. Principle Two: Obligation
3. Principle Three: Concession
4. Principle Four: Scarcity
5. Principle Five: Authority
6. Principle Six: Consistency and Commitment
7. Principle Seven: Liking
8. Principle Eight: Social Proof
9. Influence vs. Manipulation
10. Summary
7 Building Your Artwork
1. The Dynamic Rules of Framing
2. Elicitation
3. Summary
8 I Can See What You Didn't Say
1. Nonverbals Are Essential
2. All Your Baselines Belong to Us
3. Understand the Basics of Nonverbals
4. Comfort vs. Discomfort
5. Summary
9 Hacking the Humans
1. An Equal Opportunity Victimizer
2. The Principles of the Pentest
3. Phishing
4. Vishing
5. SMiShing
6. Impersonation
7. Reporting
8. Top Questions for the SE Pentester
9. Summary
10 Do You Have a M.A.P.P.?
1. Step 1: Learn to Identify Social Engineering Attacks
2. Step 2: Develop Actionable and Realistic Policies
3. Step 3: Perform Regular Real-World Checkups
4. Step 4: Implement Applicable Security-Awareness Programs
5. Tie It All Together
6. Gotta Keep 'Em Updated
7. Let the Mistakes of Your Peers Be Your Teacher
8. Create a Security Awareness Culture
9. Summary
11 Now What?
1. Soft Skills for Becoming an Social Engineer
2. Technical Skills
3. Education
4. Job Prospects
5. The Future of Social Engineering
Index
End User License Agreement

List of Illustrations

Chapter 1
1. Figure 1-1 How does this make you feel?
2. Figure 1-2 This SMiShing attack trapped a lot of people.
3. Figure 1-3 The SE Pyramid
Chapter 2
1. Figure 2-1 Amazing OSINT on a secure target
2. Figure 2-2 What do you see?
3. Figure 2-3 Is that easier to see?
4. Figure 2-4 What can you tell from this picture?
5. Figure 2-5 Do you see him?
6. Figure 2-6 Confirmation
7. Figure 2-7 More OSINT!
8. Figure 2-8 A lot more info on Nick
9. Figure 2-9 When was Nick popular?
10. Figure 2-10 Even more OSINT!
11. Figure 2-11 That's a whole lotta Nick.
12. Figure 2-12 Who is you?
13. Figure 2-13 He's baaacccckkk.
14. Figure 2-14 0 to 206 in .82 seconds flat
15. Figure 2-15 Are we getting warm yet, Nick?
16. Figure 2-16 Why did you call it private?
17. Figure 2-17 What went wrong?
18. Figure 2-18 Multilingual Google searches
19. Figure 2-19 Webcams galore!
20. Figure 2-20 That's a lot of disallowance!
21. Figure 2-21 “What's-a meta you?!” (See what I did there?)
22. Figure 2-22 “No, really. What's-a meta you?!”
23. Figure 2-23 The answer is …
24. Figure 2-24 That's pretty saucy, if you ask me.
Chapter 3
1. Figure 3-1 And yes, the pigeon's head was included.
2. Figure 3-2 These four points are crucial to communications.
3. Figure 3-3 DISC simply defined
4. Figure 3-4 Choose wisely.
5. Figure 3-5 Understanding DISC
6. Figure 3-6 DISC in detail
Chapter 6
1. Figure 6-1 Reciprocity in action
2. Figure 6-2 Obligation in action
3. Figure 6-3 Concession in action
4. Figure 6-4 Scarcity in action
5. Figure 6-5 What do his face and body language tell you?
6. Figure 6-6 What are the signs of confidence?
7. Figure 6-7 Authority in action
8. Figure 6-8 Commitment and consistency in action
9. Figure 6-9 Liking in action
10. Figure 6-10 Social proof in action
Chapter 7
1. Figure 7-1 Perfectly julienned celery
2. Figure 7-2 The pretext bridges the framing gap.
3. Figure 7-3 In case you are still guessing, yes, it's a spider.
Chapter 8
1. Figure 8-1 What most people imagine I do when I see Dr. Ekman (not far from the truth).
2. Figure 8-2 What baselines do you see here?
3. Figure 8-3 What change do you see here?
4. Figure 8-4 What baselines do you see in this one?
5. Figure 8-5 Is Amaya upset or not?
6. Figure 8-6 Is she irritated, about to lie, cold, or comfortable?
7. Figure 8-7 Is this comfort or discomfort?
8. Figure 8-8 Anger in the face
9. Figure 8-9 Anger in the body
10. Figure 8-10 Subtle anger
11. Figure 8-11 Disgust
12. Figure 8-12 Disinterest
13. Figure 8-13 Contempt can be confused with happiness.
14. Figure 8-14 A classic fear expression
15. Figure 8-15 Startled fear in body language
16. Figure 8-16 Covering the suprasternal notch indicates fear.
17. Figure 8-17 Surprise, which can often be misinterpreted as fear
18. Figure 8-18 Surprise may cause a person to lean back with raised facial expressions.
19. Figure 8-19 Shock, a form of surprise, might be indicated by a person covering their mouth.
20. Figure 8-20 Facial elements of sadness
21. Figure 8-21 Self comforting hug
22. Figure 8-22 Eye blocking
23. Figure 8-23 Slumped body language
24. Figure 8-24 A fake real smile
25. Figure 8-25 Notice the open, confident arm position.
26. Figure 8-26 Open ventral displays indicate trust and happiness.
27. Figure 8-27 Open ventral displays are often associated with welcoming or cordial greetings.
28. Figure 8-28 Happiness on the face shown by a genuine smile and head tilt
Chapter 9
1. Figure 9-1 The SE stages
2. Figure 9-2 A popular SMiShing message after a breach
Chapter 10
1. Figure 10-1 This is not security.
2. Figure 10-2 Just a sampling of the current news

Social Engineering: T he Science of Human Hacking

Published by
John Wiley & Sons, Inc.
10475 Crosspoint Boulevard
Indianapolis, IN 46256
www.wiley.com

Published simultaneously in Canada

ISBN: 978-1-119-43338-5

ISBN: 978-1-119-43373-6 (ebk)

ISBN: 978-1-119-43375-0 (ebk)

No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at http://www.wiley.com/go/permissions.

Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation warranties of fitness for a particular purpose. No warranty may be created or extended by sales or promotional materials. The advice and strategies contained herein may not be suitable for every situation. This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services. If professional assistance is required, the services of a competent professional person should be sought. Neither the publisher nor the author shall be liable for damages arising herefrom. The fact that an organization or Web site is referred to in this work as a citation and/or a potential source of further information does not mean that the author or the publisher endorses the information the organization or website may provide or recommendations it may make. Further, readers should be aware that Internet websites listed in this work may have changed or disappeared between when this work was written and when it is read.

For general information on our other products and services please contact our Customer Care Department within the United States at (877) 762-2974, outside the United States at (317) 572-3993 or fax (317) 572-4002.

Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some material included with standard print versions of this book may not be included in e-books or in print-on-demand. If this book refers to media such as a CD or DVD that is not included in the version you purchased, you may download this material at http://booksupport.wiley.com. For more information about Wiley products, visit www.wiley.com.

Library of Congress Control Number: 2018943781

Trademarks: Wiley and the Wiley logo are trademarks or registered trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other countries, and may not be used without written permission. All other trademarks are the property of their respective owners. John Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.

CREDITS

PROJECT EDITOR
Charlotte Kughen
TECHNICAL EDITOR
Michele Fincher
PRODUCTION EDITOR
Athiyappan Lalith Kumar
COPY EDITOR
Kathryn Duggan
PRODUCTION MANAGER
Katie Wisor
MANAGER OF CONTENT ENABLEMENT AND OPERATIONS
Pete Gaughan
MARKETING MANAGER
Christie Hilbrich
EXECUTIVE EDITOR
Jim Minatel
PROJECT COORDINATOR, COVER
Brent Savage
PROOFREADER
Nancy Bell
INDEXER
Johnna VanHoose
COVER DESIGNER
Wiley
COVER IMAGE
Background © Floriana /iStockphoto;
Author Photo © Amaya Hadnagy Photography, 2018

ACKNOWLEDGMENTS

“It was just a few years ago that I was sitting with my friend and mentor, Mati Aharoni, deciding to launch www.social-engineer.org.”

Those are the opening words of Social Engineering: The Art of Human Hacking. As I sit here and read them now, it's almost like a dream; the hazy memory makes me feel like I will wake up any minute. I reflect on the journey that has taken me through the past decade, and especially the last eight years, and it has all come to life in this book.

Over the last eight years I have worked with people like Dr. Paul Ekman, Robin Dreeke, Neil Fallon, and others. I have had the honor of interviewing people like Dr. Robert Cialdini, Dr. Amy Cuddy, Dov Baron, Dr. Ellen Langer, Dr. Dan Airely, and so many others. I have had the privilege of giving a speech with Apollo Robins and meeting Will Smith. I have been flown to the UK to train members of MI-5 and MI-6. And I have been invited to the Pentagon to debrief 35 generals, heads of state, and other officials on social engineering.

The last eight years have been an amazing roller-coaster ride. But like any project, nothing is made on an island of one. These experiences, my life, and the people I have had the honor of getting to know and work with are because of so many people that have helped me along the way.

My wife, Areesa, is one of the most patient and beautiful women I have ever met. Although she does not live in this world that I exist in, she truly supports me, loves me, and gives me a happy life that is full of laughs, adventure, and everlasting memories.

When my son, Colin, was little, he was going to be a doctor, then a writer, then a volunteer. Funny enough, he tried his hand at caregiving and writing, and he still volunteers. His positive attitude and kind spirit is an example to me.

I remember swearing that I would never let my daughter, Amaya, in this world of social engineering; I would keep her safe. She has taught me that keeping her safe means teaching her, including her, and making her a part of my life. She has given me so much more than I have given her.

Although Dr. Ekman wasn't directly related to this book, his kindness, motivation and generosity are an inspiration to me. Thank you.

I want to thank and acknowledge others who have been a continuing part of my journey:

Ping Look is an endless and selfless supply of advice and help.
Dave Kennedy's friendship and support mean so much.
The Innocent Lives Foundation has become an integral part of this process, so I want to thank the following people from that organization:
- I never would have thought I could say that Neil Fallon and I would become friends (pinch me). But now he helps guide me, direct me, and encourage me. He truly reminds me to be human.
- Tim Maloney's support and protection have been such a big part of putting together the ILF. His friendship, faith, and support in this process is something I cannot sufficiently thank him for.
- Casie Hall's excitement and enthusiasm to be a part of the solution is contagious.
- I thank AJ Cook for her support with ILF and being so easy to work with in our efforts to save kids. Her dedication is exemplary.
- Aisha Tyler's (ha! Even typing that name seems a little surreal.) work ethic, kindness, and ability to focus is a model that we should all emulate.
My team at Social-Engineer, LLC has been great. Colin, Mike, Cat, Ryan, Amanda, Kaz, Jenn, and Karen—each has helped me improve and supported me through this process.
I swear my editor Charlotte should be my ghost writer for a book. She captured thoughts and helped me sound more intelligent. (That is a hard job!)
And the readers and fans of the Social-Engineer Podcast, SEVillages at the conferences, my other books, and SE-Events—you have held me to a high standard, haven't been afraid to call me out on stupid mistakes, and have made me constantly strive to do better. Thank you!

FOREWORD

When I started Apple Computers in 1976 with Steve Jobs, I did not imagine where that invention would take the world. I wanted to do something that was unheard of: create a personal computer. One that any person could use, enjoy, and benefit from. Jump forward only a short 40 or so years and that vision is a reality.

With billions of personal computers around the globe, smartphones, smart devices, and technology being embedded into every aspect of our lives, it is important to take a step back and look at how we maintain safety and security while still innovating and growing and working with the next generation.

I love getting to work with youth today, inspiring them to innovate and grow. I love seeing the ideas flow from them as they figure out new and creative ways to use technology. And I truly love being able to see how this technology can enhance people's lives.

With that said, we need to take a serious look at how we secure this future. In 2004 when I gave the keynote speech at HOPE Conference, I said that a lot of hacking is playing with other people and getting them to do strange things. My friend, Kevin Mitnick, has mastered this over the years in one area of security called social engineering.

Chris’s book captures the very essence of social engineering, defining and shaping it for all of us to understand. He has rewritten the book on it again, defining the core principles of how we as humans make decisions and how those very same processes can be manipulated.

Hacking has been around for a while, and human hacking has been around for as long as humans have. This book can prepare you, protect you, and educate you how to recognize, defend, and mitigate the risks that come from social engineering.

—Steve “Woz” Wozniak

PREFACE

Social engineering—I can remember when searching for that term led you to videos on getting free burgers or dates with girls. Now it seems like it's almost a household term. Just the other day I heard a friend of the family, who's not in this industry at all, talking about an email scam. She said, “Well, that's just a great example of social engineering!”

It threw me for a loop for a second, but here we are, eight years after my decision to start a company solely focused on social engineering, and now it's a full-blown industry and household term.

If you were to just start reading this book it would be easy to mistake my intentions. You might think I am fully okay with arming the bad guys or preparing them for nefarious acts. That cannot be further from the truth.

When I wrote my first book, there were many folks who, during interviews, got very upset with me and said I was arming the malicious social engineers. I felt the same then as I do now: you cannot really defend against social engineering until you know all sides of its use. Social engineering is a tool like a hammer, shovel, knife, or even a gun. Each has a purpose that can be used to build, save, feed, or survive; each tool also can be used to maim, kill, destroy, and ruin. For you to understand how to use social engineering to build, feed, survive, or save, you need to understand both uses. This is especially true if your goal is to defend. Defending yourself and others from malicious uses of social engineering requires that you step over into the dark side of it to get a clear picture of how it is used.

I was recently chatting with AJ Cook about her work on Criminal Minds, and she mentioned that she often has to meet with real federal agents who work serial-killer cases to prepare herself for playing the role of JJ on the show. The same idea applies directly to this book.

As you read this book, do it with an open mind. I tried my hardest to put the knowledge, experience, and practical wisdom I have learned over the last decade onto these pages. There will always be some mistakes or something you don't like or something you might feel was not 100% clear. Let's discuss it; reach out to me and let's talk. You can find me on Twitter: @humanhacker. Or you can email me from one of the websites: www.social-engineer.org or www.social-engineer.com.

When I teach my five-day courses, I always ask the students to not treat me like some infallible instructor. If they have knowledge, thoughts, or even feelings that contradict something I say, I want to discuss it with them. I love learning and expanding my understanding on these topics. I extend the same request to you.

Finally, I want to thank you. Thank you for spending some of your valuable time with me in the pages of this book. Thank you for helping me improve over the years. Thank you for all your feedback, ideas, critiques, and advice.

I truly hope you enjoy this book.

—Christopher Hadnagy

Social Engineering

The Science of Human Hacking

ABOUT THE AUTHOR

ABOUT THE TECHNICAL EDITOR

CREDITS

ACKNOWLEDGMENTS

FOREWORD

PREFACE