Explore the ethical implications and potential consequences of social engineering pentests in this thought-provoking Black Hat conference talk. Delve into the challenges that arise in the aftermath of such engagements, examining real-world examples and Twitter messages that highlight the complexities involved. Analyze the blame game, systemic failures, and the importance of proper debriefing. Investigate the impact on security culture and discuss the responsibilities of pentesters. Gain valuable insights and takeaways to ensure more ethically responsible approaches to social engineering engagements in the cybersecurity field.
The Aftermath of a Social Engineering Pentest - Are We Being Ethically Responsible?
Overview
Syllabus
Intro
Who am I
Outline
History
Twitter Messages
Big World Stories
The Blame Game
The Report
Systemic Failure
Debriefing
The Sims
Security Culture
Consequences
Responsibility
Takeaways
References
Questions
Taught by
Black Hat
