Social Engineering

Explore the power of OSINT in Red Teaming. Dive into techniques like social network profiling, dorking, and domain recon to bolster your social engineering skills.

Explore vishing/smishing tactics, tools, real-world cases, and prevention strategies for red teamers and pen testers.

This article discusses advanced social engineering techniques, spear phishing, and whaling for a technical audience, including OSINT, psychology of trust, and elements of effective and ineffective attacks.

This article explores techniques and best practices for physical security testing, including social engineering, physical bypass, lock picking, surveillance, and physical access control.

A working operator’s view of pretexting in 2026. Cialdini’s six (plus one) principles applied to actual engagements, building a legend that survives a target’s google check, handling the “let me verify with my manager” pushback, and the modern landscape after Scattered Spider’s MGM/Caesars helpdesk attacks, AI voice cloning, STIR/SHAKEN, and AiTM kits eating MFA fatigue’s lunch.

A working guide to social engineering for red team engagements. Covers Cialdini’s six principles of persuasion as they’re actually used in pretexting, OSINT for building a credible story, Adversary-in-the-Middle phishing against MFA-protected accounts, MFA fatigue, vishing, physical entry, and how to write findings up without throwing individual employees under the bus.