dmattingly last edited by
The SECTF (Social Engineering Capture the Flag contest) report is out.
I saw some of this live at DerbyCon. Contestants sat in a clear "phone booth" on stage, and we watched them call a company they'd been assigned so they could get information out of people, get them to click on links, and otherwise violate their corporate security.
This was for training -- nothing malicious was done with the collected information.
Many of these skills and techniques overlap with roleplaying.