Security

Social Engineering in the Enterprise Training

The social engineering training is dedicated to key administrative and IT personnel in the enterprise who have access to critical areas of the company's “know-how,” the loss of which would result in financial, reputational, and social losses.

Duration
6h
Ask about the program → See all
Who it's for

Ideal for teams that…

1 For accountants, HR staff, IT specialists who must be aware that they are a key link in the company's resources.
2 For managers of organizational units.
3 For administrators and persons responsible for internal employee training.
4 For all employees of the enterprise.
Outcomes after the program

Application and infrastructure security — a workshop for technical teams.

Protect your identity on the Internet and use selected manipulation techniques.

Recognize attack symptoms and HID implants, such as fake USB drives, etc.

Use malicious software to carry out attacks and phishing campaigns.

Create or clone ID cards for entry or key management.

Generate fake email correspondence and recognize it.

Carry out phishing campaigns in your enterprise and test your employees.

Program · 6 modules

What we actually do

M01
Introduction to Social Engineering
  • · What social engineering is
  • · Psychological foundations – how attackers deceive the human brain
  • · Case studies of real social engineering attacks
M02
Information Gathering and Attack Preparation
  • · OSINT – what can be found online about individuals and companies
  • · Darkweb – sources of leaked data and hidden services
  • · Exploiting discovered vulnerabilities to prepare an attack
  • · Searching for publicly available information about participants
  • · Modeling potential attack scenarios
M03
Phishing and Spoofing Campaigns
  • · Phishing techniques and attack vectors
  • · Creating malicious artifacts on the web
  • · Impersonating executives (e.g., CEO fraud)
  • · Phishing campaigns using cloud infrastructure
  • · Anonymization of online actions
M04
Infrastructure Attacks via Social Engineering
  • · Examples of attacks on company infrastructure
  • · Social engineering as an entry point to technical compromise
  • · Creating malware and host takeover scenarios
M05
Social Engineering and Physical Attacks
  • · Physical access attacks combined with social engineering
  • · Modified cables
  • · Malicious USB drives
  • · USB devices disguised as fans or peripherals
M06
Group Exercises and Defense Strategies
  • · How to protect yourself and your organization
  • · Discussion of detection and protection measures
  • · Anti-phishing procedures
  • · Building awareness and resilience against social engineering
Every module is adapted to your stack and context. The above is a starting point — not a fixed agenda.
How we work

From brief to retro in 30 days.

01

Brief & diagnosis

A call with the team lead + a short survey for participants. We define goals, gap and context.

02

Program customization

We adapt modules, case studies and code examples to your stack. Approval in 5 days.

03

Workshop

Trainer-led sessions, hands-on, code review. Mentor available between sessions too.

04

Retro + report

Outcome report for the team and lead. 30 days of consulting included.

Inquiry

Send a brief. We'll reply within 1 day.

After a short brief we'll prepare a program and a quote. No obligations — it's just a starting point.

Quote within 48h of the brief
First session within 30 days
Pilot before the full decision
VAT invoice, payment in instalments possible

Ochrona antyspamowa (Cloudflare Turnstile) zostanie aktywowana po wpięciu klucza.

Other programs for teams

See all →
Security

AWS Cloud Security Training

Application and infrastructure security — a workshop for technical teams.

Security
Security

Azure Cloud Security Training

Application and infrastructure security — a workshop for technical teams.

Security
Security

Container Security Management Training

Application and infrastructure security — a workshop for technical teams.

Security