Social engineering is a technique used to exploit human weakness as an attack vector. The way to prevent human weakness as an attack vector is through policy and you must practise what you preach, without adhering to policy you will be a victim of social engineering.
Social engineering toolkit is a program by David Kennedy which works together with Metasploit to use human as an attack vector to bypass firewall and antivirus detection. The previous few post about remote access into a victim’s machine through the used by written exploits and payloads could be achieved because there was no firewall in place.
The location of SET can be found in /pentest/exploits/set/set
1) Social-Engineering Attacks
2) Website Attack Vectors
2) Metasploit Browser Exploit Method
2) Site Cloner
16) Microsoft Internet Explorer iepeers.dll Use After Free (MS10-018)
2) Windows Reverse_TCP Meterpreter
Use shikata ga nai encoder to encode the file.
shikata ga nai means Nothing you can do about it in Japanese.