The Social-Engineer Toolkit (SET)
The Social-Engineer Toolkit (SET) is specifically designed to perform advanced attacks against the human element. SET has quickly became a standard tool in a penetration testers arsenal. SET is written by David Kennedy (ReL1K) and with a lot of help from the community it has incorporated attacks never before seen in an exploitation toolset. The attacks built into the toolkit are designed to be focused attacks against a person or organization used during a penetration test.
SET is a menu driven based attack system, which is fairly unique when it comes to hacker tools. The decision not to make it command line was made because of how social-engineer attacks occur; it requires multiple scenarios, options, and customizations. If the tool had been command line based it would have really limited the effectiveness of the attacks and the inability to fully customize it based on your target
[adsense size='1']
The Social-Engineer Toolkit Supported platforms
- Linux
- Windows (experimental)
The next major revision of The Social-Engineer Toolkit (SET) v6.5 codename “Mr Robot” has just been released.. This version incorporates a new HTA web attack vector (thanks Justin Elze aka ginger)
SET version 6.5 [Changes]
- added brand new attack vector HTA attack and incorporated powershell injection into it
- fixed a prompt that would cause double IP questions in certain attack vectors
- slimmed down powershell injection http/https attack vectors in order to use in payload delivery
- added exploit to browser attack Adobe Flash Player ByteArray Use After Free (2015-07-06)
- added exploit to browser attack Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow (2015-06-23)
- added exploit to browser attack Adobe Flash Player Drawing Fill Shader Memory Corruption (2015-05-12)
[adsense size='1']
Source && Download
Gloss