#### LAB 5: Social Engineeering Penetration Testing using 

The Social-Engineer Toolkit (SET) is an open-source Python-driven tool aimed at penetration testing around social engineering.

## Lab Scenario

As an ethical hacker, penetration tester, or security administrator, you should be extremely familiar with SET to perform various tests for vulnerabilities on the network.

## Lab Objectives

* Clone a website
* Obtain user names and passwords using the Credential Harvester method
* Gnerate reports for conducted peneratrion tests

## Lab Environment

Connect to your lab machine hostX.ws.nsrc.org

Switch to root mode with:

	sudo -sH


Install dependencies

	sudo apt-get install apache2 libapache2-mod-php5 git  gcc g++

change directory with:

	cd /opt

Clone SET from github

	git clone https://github.com/trustedsec/social-engineer-toolkit/

Install SET

	cd social-engineer-toolkit

	python setup.py install

## Lab Duration

	20 Minutes

## Lab Tasks

Start SET by executing (Ensure you are root):

	setoolkit

First time run will prompt you to agree to the terms of service. Type 'y' and continue

	Do you agree to the terms of service [y/n]: y

On the list of menus choose:

	1) Social Engineering Attacks

On the next menu select:

	2) Website Attack Vectors

On the next set of menus choose:

	3) Credential Harvester Attack Method

Now, type 2 and press Enter to select the 'Site Cloner' option from the menu

In the next prompt, type the IP of your virtual Lab PC

	10.10.0.X (Ensure this is your lab virtual machine IP)

In the 'Enter URL to clone' prompt, enter:

	www.facebook.com



*** Since we already have Apache installed, SET will place our clone in the web root directory ***


*** READY to LAUNCH NOW !!! ***


Fire your browser on your host machine and open the URL: http://10.10.0.X where X is your group number

Provide some random parameters and click login

Pay attention to the events happening. Did you notice it redirected you to the legitimate Facebook site?


# Go back to the terminal and check if you harvested anything

	cd /var/www/html
	ls -l
	
	-rw-r--r-- 1 www-data www-data  1064 Oct 28 19:07 harvester_2015-10-28 19:05:06.180783.txt
	-rw-r--r-- 1 root     root     30830 Oct 28 19:05 index.html
	-rw-r--r-- 1 root     root       203 Oct 28 19:05 post.php

#Print out the contents of harvester with cat/less to see if you captured anything

#Now send social engineer a friend in the lab by sending them an email with your link embedded in it. You can shorten it with URL shortening services (e.g tinyurl.com) to add more fun to it.
#### END ####