Dragnet—Your Social Engineering Sidekick

Dragnet is a social engineering framework that collects OSINT data points on past and present social engineering targets, provides recommendations for current targets using conversion data from previous engagements, and offers features like landing page cloning and domain registration to increase conversions with minimal effort.

• Dragnet is a social engineering framework that increases conversions during social engineering engagements
• OSINT gathering is usually manual and repetitive, but can be automated
• Companies or websites changing their templating can cause wasted effort
• Dragnet offers features like landing page cloning and domain registration to increase conversions with minimal effort

The speaker created Dragnet after being thrown onto a phishing engagement and realizing there should be details on the job title of the person being targeted, whether they converted, and what pretext was used. He submitted the framework to different conferences and realized its full potential with a GUI.

First, Dragnet collects dozens of OSINT data points on past and present social engineering targets. Then, using conversion data from previous engagements, Dragnet provides recommendations for use on your current targets: phishing templates, vishing scripts and physical pretexts- all to increase conversions with minimal effort. Finally, features like landing page cloning and domain registration (alongside your standard infrastructure deployment, call scheduling and email delivery) make Dragnet one hell of a catch.