[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"doc-detail-46080-en":3,"doc-seo-46080-105":30,"detail-sidebar-cat-0-en-105":92},{"code":4,"msg":5,"data":6},0,"success",{"doc_id":7,"user_id":8,"nickname":9,"user_avatar":10,"doc_module":4,"category_id":11,"category_name":12,"doc_title":13,"doc_description":14,"doc_content":15,"file_id":16,"file_url":17,"file_type":18,"file_size":19,"view_count":20,"is_deleted":4,"is_public":21,"is_downloadable":21,"audit_status":21,"page_count":22,"language":23,"language_code":24,"site_id":25,"html_lang":24,"table_of_contents":26,"faqs":27,"seo_title":13,"seo_description":14,"update_tm":28,"read_time":29},46080,1099514067438,"River Wang","https://ap-avatar.wpscdn.com/avatar/100002539ee87300030?x-image-process=image/resize,m_fixed,w_180,h_180&k=1780474512215547542",6,"Technology","Practical Social Engineering","Practical Social Engineering offers a structured guide to understanding, planning, executing, measuring, and defending against social engineering techniques. It begins with core concepts such as pretexting, OSINT, and common attack methods including phishing, spear phishing, whaling, vishing, baiting, and dumpster diving, supported by psychological principles of influence and persuasion. It then addresses ethical boundaries, provides offensive workflow steps with OSINT gathering, phishing setup, and landing-page cloning, and closes with proactive and technical defenses, threat-intelligence production, and reporting templates.","CONTENTS IN DETAIL  \nTITLE PAGE  \nCOPYRIGHT  \nDEDICATION  \nABOUT THE AUTHOR  \nACKNOWLEDGMENTS  \nINTRODUCTION  \nWho This Book Is For  \nWhat You’ll Find in This Book  \nSummary  \nPART I: THE BASICS  \nCHAPTER 1: WHAT IS SOCIAL ENGINEERING?  \nImportant Concepts in Social Engineering  \nPretexting  \nOpen Source Intelligence  \nPhishing  \nSpear Phishing  \nWhaling  \nVishing  \nBaiting  \nDumpster Diving  \nPsychological Concepts in Social Engineering  \nInfluence  \nManipulation  \nRapport  \nDr. Cialdini’s Six Principles of Persuasion  \nSympathy vs. Empathy  \nConclusion  \nCHAPTER 2: ETHICAL CONSIDERATIONS IN SOCIAL ENGINEERING  \nEthical Social Engineering  \nEstablishing Boundaries  \nUnderstanding Legal Considerations  \nUnderstanding Service Considerations  \nDebriefing After the Engagement  \nCase Study: Social Engineering Taken Too Far  \nEthical OSINT Collection  \nProtecting Data  \nFollowing Laws and Regulations  \nCase Study: Ethical Limits of Social Engineering  \nConclusion  \nPART II: OFFENSIVE SOCIAL ENGINEERING  \nCHAPTER 3: PREPARING FOR AN ATTACK  \nCoordinating with the Client  \nScoping  \nDefining Objectives  \nDefining Methods  \nBuilding Successful Pretexts  \nUsing Specialized Operating Systems for Social Engineering  \nFollowing the Attack Phases  \nCase Study: Why Scoping Matters  \nConclusion  \nCHAPTER 4: GATHERING BUSINESS OSINT  \nCase Study: Why OSINT Matters  \nUnderstanding Types of OSINT  \nBusiness OSINT  \nGetting Basic Business Information from Crunchbase  \nIdentifying Website Owners with WHOIS  \nCollecting OSINT from the Command Line with Recon  \nng  \nUsing Other Tools: theHarvester and OSINT Framewor  \nk  \nFinding Email Addresses with Hunter  \nExploiting Mapping and Geolocation Tools  \nConclusion  \nCHAPTER 5: SOCIAL MEDIA AND PUBLIC DOCUMENTS  \nAnalyzing Social Media for OSINT  \nLinkedIn  \nJob Boards and Career Sites  \nFacebook  \nInstagram  \nLeveraging Shodan for OSINT  \nUsing Shodan Search Parameters  \nSearching IP Addresses  \nSearching Domain Names  \nSearching Hostnames and Subdomains  \nTaking Automatic Screenshots with Hunchly  \nPilfering SEC Forms  \nConclusion  \nCHAPTER 6: GATHERING OSINT ABOUT PEOPLE  \nUsing OSINT Tools for Analyzing Email Addresses  \nFinding Out If a User Has Been Breached with Have I  \nBeen Pwned  \nEnumerating Social Media Accounts with Sherlock  \nEnumerating Website Accounts with WhatsMyName Analyzing Passwords with Pwdlogy  \nAnalyzing a Target’s Images  \nManually Analyzing EXIF Data  \nAnalyzing Images by Using ExifTool  \nAnalyzing Social Media Without Tools  \nLinkedIn  \nInstagram  \nFacebook  \nTwitter  \nCase Study: The Dinner That Gave All the Gold Away  \nConclusion  \nCHAPTER 7: PHISHING  \nSetting Up a Phishing Attack  \nSetting Up a Secure VPS Instance for Phishing Landin  \ng Pages  \nChoosing an Email Platform  \nPurchasing Sending and Landing Page Domains  \nSetting Up the Phishing and Infrastructure Web Server Additional Steps for Phishing  \nUsing Tracking Pixels to Measure How Often Your Ema  \nil Is Opened  \nAutomating Phishing with Gophish  \nAdding [HTTPS Support](HTTPS Support) for Phishing Landing Pages  \nUsing URL Shorteners in Phishing  \nUsing SpoofCard for Call Spoofing  \nTiming and Delivery Considerations  \nCase Study: The $25 Advanced Persistent Phish  \nConclusion  \nCHAPTER 8: CLONING A LANDING PAGE  \nAn Example of a Cloned Website  \nThe Login Page  \nThe Sensitive Questions Page  \nThe Error Page  \nHarvesting the Information  \nCloning a Website  \nFinding the Login and User Pages  \nCloning the Pages by Using HTTrack  \nAltering the Login Field Code  \nAdding the Web Pages to the Apache Server  \nConclusion  \nCHAPTER 9: DETECTION, MEASUREMENT, AND REPORTING  \nDetection  \nMeasurement  \nSelection of Metrics  \nRatios, Medians, Means, and Standard Deviations  \nThe Number of Times an Email Is Opened  \nThe Number of Clicks  \nInformation Input into Forms  \nActions Taken by the Victim  \nDetection Time  \nThe Timeliness of Corrective Actions  \nThe Success of Corrective Actions  \nRisk Ratings  \nReporting  \nKnowing W","cbCaiujckoCR1DEr","https://ap.wps.com/l/cbCaiujckoCR1DEr","pdf",7428751,26,1,292,"English","en",105,"# Introduction\n# Part I: The Basics\n## What Is Social Engineering?\n## Ethical Considerations in Social Engineering\n# Part II: Offensive Social Engineering\n## Preparing for an Attack\n## Gathering Business OSINT\n## Social Media and Public Documents\n## Gathering OSINT About People\n## Phishing\n## Cloning a Landing Page\n## Detection, Measurement, and Reporting\n# Part III: Defending Against Social Engineering\n## Proactive Defense Techniques\n## Technical Email Controls\n## Producing Threat Intelligence\n# Appendices","[{\"question\":\"What are the foundational concepts and common techniques covered in the book?\",\"answer\":\"The book explains social engineering basics such as pretexting and open source intelligence, then covers phishing, spear phishing, whaling, vishing, baiting, and dumpster diving.\"},{\"question\":\"How does the book address ethics and legal/service boundaries for social engineering?\",\"answer\":\"It outlines establishing boundaries, understanding legal and service considerations, debriefing after engagement, and discusses ethical limits through case studies and guidance for ethical OSINT collection and data protection.\"},{\"question\":\"What offensive and defensive processes are recommended for phishing and social engineering?\",\"answer\":\"Offensively, it covers preparation, business and people OSINT gathering, phishing setup and automation, landing-page cloning, and how to detect, measure, and report outcomes. Defensively, it emphasizes awareness programs, running phishing campaigns for training, incident response, technical email controls, and producing threat intelligence.\"}]",1783470568,736,{"code":4,"msg":31,"data":32},"ok",{"site_id":25,"language":24,"slug":33,"title":13,"keywords":34,"description":14,"schema_data":35,"social_meta":87,"head_meta":89,"extra_data":91,"updated_unix":28},"practical-social-engineering","",{"@graph":36,"@context":86},[37,54,69],{"@type":38,"itemListElement":39},"BreadcrumbList",[40,44,48,51],{"item":41,"name":42,"@type":43,"position":21},"https://docshare.wps.com","Home","ListItem",{"item":45,"name":46,"@type":43,"position":47},"https://docshare.wps.com/document/","Document",2,{"item":49,"name":12,"@type":43,"position":50},"https://docshare.wps.com/document/technology/",3,{"item":52,"name":13,"@type":43,"position":53},"https://docshare.wps.com/document/practical-social-engineering/46080/",4,{"url":52,"name":13,"@type":55,"author":56,"headline":13,"publisher":58,"fileFormat":61,"inLanguage":24,"description":14,"dateModified":62,"datePublished":63,"encodingFormat":61,"isAccessibleForFree":64,"interactionStatistic":65},"DigitalDocument",{"name":9,"@type":57},"Person",{"url":41,"name":59,"@type":60},"DocShare","Organization","application/pdf","2026-07-17","2026-07-08",true,{"@type":66,"interactionType":67,"userInteractionCount":20},"InteractionCounter",{"@type":68},"ViewAction",{"@type":70,"mainEntity":71},"FAQPage",[72,78,82],{"name":73,"@type":74,"acceptedAnswer":75},"What are the foundational concepts and common techniques covered in the book?","Question",{"text":76,"@type":77},"The book explains social engineering basics such as pretexting and open source intelligence, then covers phishing, spear phishing, whaling, vishing, baiting, and dumpster diving.","Answer",{"name":79,"@type":74,"acceptedAnswer":80},"How does the book address ethics and legal/service boundaries for social engineering?",{"text":81,"@type":77},"It outlines establishing boundaries, understanding legal and service considerations, debriefing after engagement, and discusses ethical limits through case studies and guidance for ethical OSINT collection and data protection.",{"name":83,"@type":74,"acceptedAnswer":84},"What offensive and defensive processes are recommended for phishing and social engineering?",{"text":85,"@type":77},"Offensively, it covers preparation, business and people OSINT gathering, phishing setup and automation, landing-page cloning, and how to detect, measure, and report outcomes. Defensively, it emphasizes awareness programs, running phishing campaigns for training, incident response, technical email controls, and producing threat intelligence.","https://schema.org",{"og:url":52,"og:type":88,"og:title":13,"og:site_name":59,"og:description":14},"article",{"robots":90,"canonical":52},"index,follow",{"doc_id":7,"site_id":25},{"code":4,"msg":5,"data":93},[94,98,102,106,111,114,119,124,129,132,136],{"id":21,"doc_module":4,"doc_module_name":46,"category_name":95,"show_sort_weight":96,"slug":97},"Story & Novel",90,"story-novel",{"id":47,"doc_module":4,"doc_module_name":46,"category_name":99,"show_sort_weight":100,"slug":101},"Literature",80,"literature",{"id":53,"doc_module":4,"doc_module_name":46,"category_name":103,"show_sort_weight":104,"slug":105},"Exam",70,"exam",{"id":107,"doc_module":4,"doc_module_name":46,"category_name":108,"show_sort_weight":109,"slug":110},5,"Comic",60,"comic",{"id":11,"doc_module":4,"doc_module_name":46,"category_name":12,"show_sort_weight":112,"slug":113},50,"technology",{"id":115,"doc_module":4,"doc_module_name":46,"category_name":116,"show_sort_weight":117,"slug":118},7,"Healthcare",40,"healthcare",{"id":120,"doc_module":4,"doc_module_name":46,"category_name":121,"show_sort_weight":122,"slug":123},8,"Research & Report",30,"research-report",{"id":125,"doc_module":4,"doc_module_name":46,"category_name":126,"show_sort_weight":127,"slug":128},9,"Religion & Spirituality",20,"religion-spirituality",{"id":127,"doc_module":4,"doc_module_name":46,"category_name":130,"show_sort_weight":127,"slug":131},"World Cup","world-cup",{"id":133,"doc_module":4,"doc_module_name":46,"category_name":134,"show_sort_weight":133,"slug":135},10,"Lifestyle","lifestyle",{"id":137,"doc_module":4,"doc_module_name":46,"category_name":138,"show_sort_weight":107,"slug":139},19,"General","general"]