To calculate the overall star rating and percentage breakdown by star, we don’t use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyses reviews to verify trustworthiness.
First of all let me say that I've read the first book more than a few times now, listened to the podcast, and read a large number of the books recommended on the soc-eng site. I've also attended the week long course that Chris runs based on this material (tl;dr, its an amazing course, thoroughly recommended).
I was looking forward to seeing this come out and had my pre-order in for months before it came out (some life events meant I'm late posting this) and as soon as it came in I put my (then) current book down half read and started on this.
It's clear that the book is intended, not as an alternative to the first book but as, more of an introduction to the science behind the techniques of social engineering discussed in the first book; as well as supplemental material such as micro-expressions. As such, it does a good job explaining that Social Engineering is based on sound psychological principles and not just on simplistic cons or jedi mind tricks. The writing style is engaging and discusses the subject along with relevant anecdotes from the authors experience. Given that, and the relatively short length of the book, you can easily zip through it in one or two sittings.
Reading some of the reviews of the first book its clear that, as well as a lot of very positive feedback on the value of it, it attracted a number of negative reviews mainly from people who just thought "conning people is bad" (ignoring the context). In tandem with a pervasive view in Infosec that social engineering is somehow an inferior form of hacking, it could be viewed that this book is a direct response to that criticism. This is where I think some people might not see the full value. You can't learn everything there is to learn about such a complex subject as micro-expressions for example in a book this size. What you can do is learn that the subject exists, why it's of value to a social engineer, and where you can go to learn more. It's essentially a gateway to other works on the subjects herein from Dr Ekman, Cialdini, Navarro, Dreeke, etc. If you want to learn "how" read the first book and all the other works referenced. This book is more around a view on "why". Why the techniques work, and why a social engineer might use them in the context of an exercise.
Having already read a number of books around this subject I perhaps didn't learn a huge amount of new material, but I enjoyed reading the book nonetheless and I can see the value in reading it; even more so if you are just starting out in the field.
Very disappointing. The link with Social Engineering (SE) was a huge stretch with very little useful, applicable or meaningful SE elements. Essentially this book was a rehash of existing body language material, most noticeably Joe Navarro's stuff. If you're interested in SE then get another book. If you're interested in body language or the work of Dr Ekman........then get another book.
El libro, contrario a lo que esperaba, va directo al punto de cada tema. Lo pude terminar en 3 días y me ayudo considerablemente a ampliar mi conocimiento sobre ingeniería social. No es pesado ni tedioso, usa muchos ejemplos para ilustrar las ideas que describe. Completamente recomendado, no solo para gente de sistemas o tecnologías, sino para cualquier otra persona.
Je n'ai pas encore lu le premier livre sur le social engineering mais j'attendais plus de petites histoires de menaces concrètes et arrivées. Ce livre ne me parle pas de social engineering mais de comment comprendre le langage du corps des autres dans la vie de tous les jours.
Bien sur ça s'applique aussi aux gens qui essaient d'influencer une personne pour qu'elle donne des informations privées. Mais je ne vois pas pourquoi quelqu'un associe le terme social engineering avec ces techniques, c'est comme donner un blanc seing au hackers du monde, et leur dire quelles techniques utiliser pour influencer les gens.
J'ai apprécié les astuces pour détecter les micro et macro expressions du visage, pour déchiffrer la signification des positions du corps. Je les utiliserai avec bonheur avec mon mari!!!
As the author points out several times in the text, the information and research that went into this book isn't new. This doesn't mean that the book doesn't add anything new to the discussion, but simply that a lot of the first half of the book will be review for you if you're already familiar with the research of people like Dr. Paul Ekman and Joseph Navarro. If you haven't already studied body language, nonverbal communication and micro expressions, then this book will be an excellent introduction for you.
The second half of the book moves into the domain of social engineering, discussing how to use the methods described earlier to perform penetration tests and spot social engineers and con artists before they're able to do real damage. This part of the book is what makes Christopher Hadnagy's work valuable to people in law enforcement and the Intelligence Community.
In the end, Chris's book will leave you hungry for more information and eager to practice the skills that the book discusses. The book also provides you with several excellent resources for those people interested in continuing to learn about social engineering, body language and micro expressions.
Interesting but only mildly persuasive. It deals mostly with the body language of people but misses a lot of points and the things that it does point out are by no means universal. Other aspects pointed out are obvious. If someone turns their body away from you while you're talking , they might not be that into you. The author appears to be an expert and faking his way into secured environments a la James Bond but that relies on an audacity that has no fear of getting people fired.