Social Engineering Flashcards
Elicitation
getting info out of people through the course of a regular conversation
Preloading
influencing someone beforehand
Persuasion Principles
Reciprocation, social validation, consistency, authority, liking, scarcity
Reciprocation
When you give someone something, they feel they must return the favor
Social Validation
people are more likely to do something if they see others doing it
Consistency
based on the human tendency to want to appear consistent with what we have previously said, done, or believed, especially in situations where our prior commitments or actions are made public or visible
Authority
People respond to authority. Bring someone else into it
Liking
people are more likely to say yes to people they like (compliments -> cooperation)
Scarcity
Time limit, limited supply
Rapport Principles
- using artificial time constraints
- accommodating nonverbals
- using a slower rate of speech
- employing sympathy or assistance themes
- suspending your ego
- validating others
- asking how, why, and when questions
- making use of quid pro quo
- employing reciprocal altruism
- managing expectations
Pretexting
Creating a story beforehand before approaching someone
Impersonation
Pretending to be someone you aren’t
Phishing/spearphishing/vishing
pretending to be in need to get money or information in a fictitious email or phone call
Password profiling
CUPP method, collecting info about someone and creating a dictionary of possible passwords
True/False. Using a slower rate of speech tends to decrease rapport with a target.
False. Using a slower rate of speech tends to increase rapport.
Asking individuals to sign a pledge to perform an action (e.g., donating, voting, not cheating on an exam, etc.) prior to the time the action is performed increases the likelihood that an individual performs the action. This is an example of which principle of persuasion?
Consistency. People like to feel that they are being consistent with their pledges and values.
