One of the most popular web-based attacks that the social engineering toolkit is also using is the Java applet attack.If we try to use this attack we will notice that SET is configured to use Microsoft as the publisher name.If we want to use a different publisher we can change the following setting to ON. So we need to browse to that directory first and then to find the set_config file which is located in the directory called config inside the SET folder.This file contains all the setting that it can be made in the social engineering toolkit.īy default SET is configured to use Gmail as the default email provider for sending emails to other users through SET.If we want to use other providers such as Yahoo and Hotmail we just change the following setting: In Backtrack SET is located in the following directory:
One of the best tools for conducting social engineering attacks is SET which was developed by Dave Kennedy.The social engineering toolkit is already pre-configured to use some default settings in order to make it more easier for its users.However these settings can be altered in order to cover the needs of the scenario that the penetration tester will create.The changes that we can make are endless so in this article we will cover only the basic.