🛡️ Social Engineering Attack Lab (SET Toolkit)

---

👩🏽‍💻 Author

Mozella L. McCoy-Flowers
Cybersecurity & Digital Forensics

---

🎯 Objective

This lab demonstrates how social engineering attacks are executed using the Social Engineering Toolkit (SET) and how defenders can identify and prevent credential harvesting attacks.

---

📸 Lab Preview

---

🧠 What is Social Engineering?

Social engineering is the use of psychological manipulation to trick users into revealing sensitive information.

Why It Works

• Trust
• Urgency
• Authority
• Human error

---

🚀 Lab Walkthrough

🔧 Step 1: Stop Apache Server

service apache2 stop

---

🎣 Step 2: Launch SET Toolkit

setoolkit

---

🧠 Step 3: Navigate Attack Options

In SET, select:

1. Social-Engineering Attacks
2. Website Attack Vectors
3. Credential Harvester Attack Method

---

🌐 Step 4: Select Web Template

Choose the desired website template (for example, Google or Facebook) from the SET menu.

---

🌍 Step 5: Get IP Address

ifconfig eth0

Use the IP address shown for eth0 as the listener/redirect IP in SET.

---

🎯 Step 6: Launch Phishing Page

Confirm your selections in SET and start the attack to clone and host the phishing page.

---

🧪 Step 7: Simulate Victim

On a client/victim machine, browse to:

http://<your-ip>

Enter test credentials into the fake login page.

---

🔑 Step 8: Capture Credentials

Review the SET console output or log files to view captured credentials.

---

🚨 Indicators of Compromise (IoCs)

• Fake or unusual login pages
• Suspicious or lookalike domains
• Unexpected prompts for credentials or MFA codes

---

🛡️ Defensive Strategies

Technical controls

• SPF, DKIM, and DMARC on email domains
• Email filtering and sandboxing
• Endpoint Detection and Response (EDR)
• Web proxy and URL filtering

Human-focused controls

• Security awareness training
• Regular phishing simulations
• Clear reporting channels for suspicious emails

---

🧠 MITRE ATT&CK Mapping

• T1566 – Phishing
• Credential Access techniques
• Data Collection techniques

---

📚 Skills Demonstrated

• Social engineering analysis
• Linux command-line usage
• Threat detection mindset
• Cybersecurity documentation

---

⚠️ Disclaimer

This lab is for educational purposes only.
All activities were conducted in a controlled lab environment.

---

📸 Screenshots

🖥️ Terminal Setup

---

🔧 Apache Server

---

🧰 SET Toolkit Launch

---

🧠 Social Engineering Options

---

🎣 Credential Harvester Setup

---

🌍 Network Configuration

---

🌐 Phishing Page Deployment

---

🧪 Victim Simulation

---

🔑 Captured Credentials

---

✅ Final Output

---

👀 Preview in VS Code

In VS Code (or many Markdown editors), you can preview this README with:

Ctrl + Shift + V

(Use Cmd + Shift + V on macOS.)