Nytro Posted October 31, 2013 Report Posted October 31, 2013 The! DEFCON21 Social EngineerCapture The Flag ReportTable&of&Contents&........................................................................................................................................................................&2!Executive&Summary&...................................................................................................................................................................&3!Overview&of&the&SECTF&............................................................................................................................................................&4!Background!and!Description!................................................................................................................!4!Description!of!the!2013!Parameters!....................................................................................................!6!Target!Companies!................................................................................................................................!6!Competitors!.........................................................................................................................................!7!Flags!.....................................................................................................................................................!7!Scoring!.................................................................................................................................................!9!Rules!of!Engagement!(R.O.E)!...............................................................................................................!9!Results?&Analysis&..............................................................................................................................................................&10!Open!Source!Information!Gathering!.................................................................................................!11!Pretexting!..........................................................................................................................................!14!Live!Call!Performance!........................................................................................................................!16!Final!Contest!Results!..........................................................................................................................!19!Discussion!..........................................................................................................................................!22!Mitigation!..........................................................................................................................................!23!1.!Corporate!Information!Handling!and!Social!Media!Policies!..........................................................!23!2.!Consistent,!Real!World!Education!.................................................................................................!24!3.!Regular!Risk!Assessment!and!Penetration!Test!.............................................................................!24!About&SocialDEngineer,&Inc&..................................................................................................................................................&25!Sponsors&......................................................................................................................................................................................&26Download:http://www.social-engineer.org/defcon21/DC21_SECTF_Final.pdf Quote
