What I Learned from The Art of Human Hacking book by Christopher Hadnagy
Hello everyone,
Today I finished reading The Art of Human Hacking by Christopher Hadnagy, and I wanted to share some of the insightful information that I gained from it.
Let's start with the basics: What is social engineering?
Social engineering is the art of controlling how humans naturally think, make decisions, and behave — and using that to exploit vulnerabilities. It's not just a soft skill. It's a powerful weapon that can be used in nearly every area of life, especially in cybersecurity.
On its most basic level, social engineering (SE) takes advantage of how our brains are wired — namely the influence of two fundamental hormones:
Oxytocin: the "trust" hormone || Dopamine: the "pleasure" hormone
Hadnagy separates the process of a social engineering attack into a five-step pyramid:
OSINT || Pretext Development || Attack Planning || Attack Execution || Reporting and Documentation
Each of these steps is explored in detail in the book. But What if something goes wrong and derails your plan? Maybe the security guard is not the same, the office has been reorganized, or a key you were relying on no longer functions. That's when you call on Plan B: profile through communication.
One of the methods the book instructs is DISC profiling, where you assess an individual's communication style and behavior at that moment. And a golden rule? Focus on your target, not yourself, especially when communicating. Listen for the R.S.V.P. of communication:
Rhythm || Speed || Volume || Pitch
The book is chock-full of principles, examples, and strategies difficult to condense into a single post — but these are just some takeaways.
My Review:
I thoroughly enjoyed this book. What amazed me most was the fact that each principle is followed by real-world examples, so not only is it easier to understand but also to implement and relate. I would highly recommend it to anyone interested in social engineering, cybersecurity, or even human psychology for that matter.
Remember:
- The biggest vulnerability in cybersecurity is not a machine — it's the human.
I will be helping you in your journey do let’s Connect
I like assisting new people and sharing tips from my experience and we will be discussing another topics from your choice .
You can contact or follow me:
Linkedin : https://www.linkedin.com/in/omar-shraideh/
instagram : omar.shraideh_
Top comments (0)