trustedsec/social-engineer-toolkit

The Social-Engineer Toolkit, known as SET, is an open source framework for penetration testing focused on social engineering attacks. Social engineering is the practice of tricking people, rather than directly attacking software, to get them to give up information or run something they should not. The project is written and maintained by David Kennedy, who works at TrustedSec, an information security consulting firm based in Cleveland, Ohio. The README is short and mostly covers what the tool is and how to install it. It says SET ships with a set of custom attack templates that let a tester build a believable simulated attack quickly. There is a strong disclaimer at the top: the tool is intended only for security testing with explicit written consent from the target, and using it outside that scope is not allowed. Supported platforms are Linux and Mac OS X, with the Mac support marked as experimental. On a Mac with Apple Silicon the instructions tell you to use a Python virtual environment before installing. Installation on Linux is by cloning the repo, running pip3 install -r requirements.txt, then python setup.py. On Kali Linux running under Windows WSL the README says you can install it with sudo apt install set. There is a separate user manual provided as a PDF in the repo, linked from the README.