Q. What is a common tactic in elicitation that involves using open-ended or leading questions?

View solution

Q. What does impersonation involve in social engineering?

View solution

Q. What do quid pro quo attacks rely on in social engineering?

View solution

Q. What is the term for watching over a target's shoulder to obtain valuable information?

View solution

Q. In the context of penetration testing, under what circumstances might bribery be considered a valid technique?

View solution

Q. What is vishing in the context of phishing attacks?

View solution

Q. What is whaling in the context of phishing attacks?

View solution

Q. What is the main aim of phishing attempts?

View solution

Q. What is a watering hole attack in the context of web-based social engineering?

View solution

Q. What is the purpose of combining social engineering techniques with technical tools in penetration testing?

View solution

Q. Which tool is a menu-driven social engineering attack system that provides spear phishing, website, infectious media, and other attack vectors?

View solution

Q. What is SET (Social Engineering Toolkit) integrated with to generate payloads?

View solution

Q. Which penetration testing tool is designed to allow exploitation of web browsers?

View solution

Q. What information does BeEF provide about the connected browser?

View solution

Q. What does BeEF allow penetration testers to do inside a hooked browser?

View solution

Q. What is the purpose of caller ID and VoIP call spoofing tools in penetration testing?

View solution

Q. What advantage does physical access provide in penetration testing that isn't available in remote network-based assessments?

View solution

Q. What is one technique for gaining physical access to facilities in penetration testing?

View solution

Q. What is social engineering in the context of penetration testing?

View solution

Q. What are some common motivating factors relied upon in social engineering?

View solution