14th and 15th February, 2025
Kaapelitehdas, Helsinki Finland
Social Engineering and elicitation techniques of hacking a human being
Dorota Kozlowska
1. What is social engineering? History, Attack vectors.
2. Examples of Real Social Engineering Attacks.
3. Four Phases of Social Engineering (Reconnaissance, Engagement, Exploitation, Closure);
4. Building your artwork: What is elicitation? Elicitation Techniques.
5. I know how to make you like me - Building Rapport
6. Becoming Anyone you want to be - Pretexting.
7. Influence and persuasion.
8. Reality alteration (framing).
9. Now What? Skills you need to become a social engineer, and how to defend yourself.
10. Conclusion, final thoughts.
2. Examples of Real Social Engineering Attacks.
3. Four Phases of Social Engineering (Reconnaissance, Engagement, Exploitation, Closure);
4. Building your artwork: What is elicitation? Elicitation Techniques.
5. I know how to make you like me - Building Rapport
6. Becoming Anyone you want to be - Pretexting.
7. Influence and persuasion.
8. Reality alteration (framing).
9. Now What? Skills you need to become a social engineer, and how to defend yourself.
10. Conclusion, final thoughts.
Dorota Kozlowska
Experienced cybersecurity professional with 2 years of focused experience in Penetration Testing across Web, API, Network, and Mobile platforms, coupled with 7 years as a versatile Test Engineer & QA.
Known for independently identifying and exploiting vulnerabilities to fortify organizational security, and backed by 8 years of Project Management expertise.
Skilled in simulating real-world attacks, conducting comprehensive security assessments, and providing actionable insights to enhance defenses. Certified in Covert Access, Physical Audit, and Elicitation Toolbox from the Covert Access Team, with demonstrated proficiency in physical penetration testing and security audits. Actively pursuing advanced Red Teaming training, dedicating personal time to mastering adversarial tactics, techniques, and procedures (TTPs). Eager to combine my Penetration Testing knowledge, physical security capabilities, and evolving Red Teaming skills to contribute to a team focused on proactive threat emulation and defense enhancement.
Recognized for a strong investigative mindset, meticulous attention to detail, and exceptional communication skills, ensuring assignments are completed with confidence and precision. Praised by colleagues as 'the glue that holds the team together,' I bring kindness and support to every endeavor.
Additionally, a published author of cybersecurity and offensive security articles, featured in HVCK and Top Cyber News Magazine. Creator of the preface to the upcoming book, "INTRODUCTION TO RED OPERATIONS 2.0 - A Basic Guide for Your Red Team Operations," authored by Joas A. Santos, and a technical reviewer for the upcoming "Hacking Mainframes: Dispelling the Myth of the Impenetrable Fortress" book authored by Kevin Milne.
Honored with the Cyber Woman Hope Award by CEFCYS and recognized among the "40 under 40" in Cybersecurity 2023 by Top Cyber News Magazine. As a keynote speaker, I've presented at FIC EUROPE 2023 and 2024, WGU 2024, BSIDES Kraków 2024, DEFCON Warsaw Meetup dc4822 2024, Virtual CON 2023, and The Hack Summit 2023.
I am an avid cyclist, archer, and guitar player.
I want my legacy to be: I kept my chin up, listened, and learned. I did honest work, was fun to be around, and was an excellent emergency contact.
