ABOUT THE GAME
THE IDEA & THE VISION BEHIND ‘THE SOCIAL ENGINEER’
The Social Engineer is an immersive agent game that works without weapons and violence. Instead, players must use social engineering attack methods to get confidential information or gain access to restricted locations by exploiting the human factor as a weak point. This fascinates millions of people in Hollywood productions such as the Ocean’s series as well as in tv shows like Mr. Robot, while classic stealth games like Hitman, Thief and Invisible have a large fan base. The Social Engineer now combines these two worlds for the first time. Through the use of virtual reality, players get the opportunity to experience the work of a social engineering agent in an immersive way, be it in one-to-one conversations with employees, sneaking into a building or spying on company secrets.
We created The Social Engineer, an immersive educational game in virtual reality, to raise awareness and to sensitize players about social engineering. Players impersonate agents and conduct security audits in a virtually simulated company. The game consists of a detailed game world and different missions that require players to apply different social engineering attack methods. The Social Engineer can potentially benefit companies as an immersive self-training tool for their employees, support security experts in teaching social engineering awareness as part of a comprehensive training course, and entertain interested individuals by leveraging fun and innovative gameplay mechanics. The game is suitable for all target groups and requires no prior technical or content knowledge.
GAME CONCEPT
THE CONCEPT BEHIND ‘THE SOCIAL ENGINEER’
We want to use The Social Engineer to raise awareness against SE by demonstrating the immediate effect of SE attacks in a company while playing from an attackers’ perspective. As shown by research this is a legitimate and effective way of raising awareness. The Social Engineer provides players a realistic platform to perform security audits in simulated organizations while enhancing their awareness and sensitizing them to the intricacies of Social Engineering. The game serves as a valuable self-training tool for employees, supports security experts in training courses, and offers individuals an engaging experience through innovative gameplay in high-immersion VR. Tailored for both personal and professional use, ‘The Social Engineer’ stands apart with its integrated Education Mode, allowing users to practically apply learned knowledge within the game.
During a mission the player can always access information about all applicable SE attack methods in a collection of knowledge that is integrated into the game or request help in the form of short instructions that recommend possible approaches to choose or apply the correct SE attack method. No specific computer skills or knowledge about SE are required to master the game successfully.
Within The Social Engineer players slip into the role of a security agent on behalf of a security company. The mission is to do a security check in compaies that have ordered a security check. The focus of this security check is on finding and applying public known and often used SE attacks. For this, a security agent has to go
into the company without being exposed. In the company nobody except of a responsible person knows that the security check is taking place.
The mission consists of different tasks. A task is considered fulfilled when one or more security flaws have been revealed. Therefore the goal of each task is to receive confidential information that normally should not be accessible by persons from outside the company. Inside the company, the player can walk around and talk with gender and cultural diverse employees or interact with objects. Some of the game mechanics are inspired by well-known sandbox stealth games and combined with real SE attack methods to create an unique player experience. Different realistic business settings and locations provide a variety of different missions and showcase typical social engineering dangers and weak points.
VIDEOS
TRAILER & GAME PLAY WALKTHROUGH
Game Trailer
Gameplay Demo and Walkthrough
AWARDS & ACCOMPLISHMENTS
GAME NOMINATIONS & AWARD PRESENTATIONS
Audience Choice Award Winner - Student Game Design Competition - CHI PLAY 2020
The concept of The Social Engineer was accepted as a contribution to the Student Game Design Competition at CHI PLAY 2020. It was presented in a virtual conference that was held between November 2nd and 5th, 2020.
The game competed against twelve teams from all over the world to win the Audience Choice Award.
Young Talent Award Finalist - Best Prototype - German Computer Game Award 2021
The prototype of The Social Engineer was nominated in the category Young Talent Award – Best Prototype at the German Computer Game Award 2021 (Deutscher Computerspielepreis 2021), a prize for the German games industry that celebrates the year’s best games.
The Social Engineer was presented in a virtual ceremony on April 13th, 2021.
Best Student Game Finalist - Games for Change Awards 2022
The prototype of The Social Engineer was nominated in the category Best Student Game at the Games for Change Awards 2022. The G4C Awards celebrate the year’s best games and XR experiences for social impact and learning.
The Social Engineer was presented in a virtual ceremony on July 15th, 2022.
Young Talent Award Finalist - nextReality.Contest 2022
As part of the next.Reality.Contest 2022 our VR game The Social Engineer was nominated in the Young Talent category. The XRC Award is among the most renowned awards of the German industry and honors immersive media, novel ideas, sustainable products and creative projects in the field of AR, VR and XR.
The Social Engineer was presented in the award ceremony in Hamburg on November 4th, 2022.
Funding by German Federal Ministry of Transport and Digital Infrastructure
As part of the nomination for the German Computer Game Award 2021 we won a promotion that helps to further develop the game The Social Engineer. The promotion encourages the development of games that are artistically or culturally valuable, have educational value, are technically innovative, and/or provide fun and entertainment.
GAME
DOWNLOAD & GAME INFORMATION
Become the next top agent with The Social Engineer: explore companies, exploit vulnerabilities, deceive employees, and prevent dangerous attacks. As a Social Engineer Agent, conduct various targeted assaults on companies to uncover faulty security mechanisms. With diverse open-world settings and realistic virtual reality controls, an exciting and immersive experience awaits you, all without weapons and violence. The integrated Education Mode allows The Social Engineer to be used as a tool for training purposes.
Story
In The Social Engineer, assume the role of a Social Engineer Agent with the aim of protecting companies and businesses from catastrophic attacks. Learn various Social Engineering techniques, apply them independently in different companies, and thereby expose dangerous vulnerabilities before criminals can exploit them. Spy in various departments, sneak into secret rooms, and uncover sensitive information about employees by using publicly available information and deceiving people, all without resorting to violence or weapons. Master the training to earn the title of a professional Social Engineer.
Missions
The game features 13 exciting missions in different settings and difficulty levels. From introductory missions to challenging ones:
- Infiltrate a business meeting of an advertising agency as a purported businessman
- Pose as a police officer and steal a laptop from a police station
- Deceive a dock worker to operate a crane unnoticed
- Disguise yourself as a janitor to take pictures of secret photoshoots
- and much more
Social Engineering Techniques
Utilize a constantly expanding repertoire of different Social Engineering techniques to achieve your goals.
- Disguise yourself and pretend to be someone else
- Sneak into monitored rooms
- Explore private social media pages
- Execute baiting attacks with QR codes
- Hack into computers using manipulated USB sticks
- Search trash bins for information
- Use websites and public notices
- Deceive employees in personal conversations or calls
Game Mechanics
The Social Engineer is a roomscale VR game, allowing you to freely move through the game world. Additionally, there’s a teleportation function for covering long distances or moving between floors. Use the controllers as virtual hands to interact with objects, doors, and people. Your tablet contains essential information and apps such as a Social Engineering Wiki, a browser, a phone app, a building plan, a photo app, and a help app. There’s also a Mission Instructor to assist you in missions.
Download The Social Engineer on Steam
Download the game on Steam here:
SteamVR System Requirements
- OS: Windows 10 or later
- Processor: Core i5-4590 / AMD FX 8350 or better
- Memory: 32 GB RAM
- Graphics: NVIDIA GeForce RTX 3060 or equivalent or better
- Storage: 3 GB available space
- VR Support: SteamVR Room Scale HMD, e.g. HTC VIVE (Pro, Cosmos), Oculus Rift, Valve Index, Windows Mixed Reality, Meta Quest (only in combination with Meta Quest Link)
Privacy Policy & Safety Guidelines
No information, data or files are stored, transfered, or shared with third parties by the game. The game does not establish an internet connection.
More information:
This game includes fast movements and on-screen text that may cause discomfort or eye strain in a few individuals. Take a break if you feel uneasy or experience symptoms of motion sickness, simulator sickness, or eye strain!
All locations, company names, logos, and individuals in the game are fictional. Similarities to real places, companies, or persons are unintended and purely coincidental. All Social Engineering attacks presented in the game are merely gameplay mechanics and should only be carried out in the real world by trained security experts.
Credits
Publisher & Distributor:
zefwih
Game Development & Programming:
Fabian Fischbach, Pascal Jansen, Oliver Schmid
Game Concept & Story:
Pascal Jansen, Fabian Fischbach
Supportive Game Concept Consultation:
Julian Frommel, Tobias Drey
Logo Design:
Susanne Staudinger
Contact:
contact@zefwih.com
SCIENTIFIC BACKGROUND
RESEARCH PAPERS & EDUCATIONAL CONTEXT
The conecpt of The Social Engineer was developed in cooperation with the Institute of Media Informatics at Ulm University. The prototyp of the game was developed as part of a student project. The concept of the game was published in form of a short paper at CHI PLAY 2020.
The goal of The Social Engineer is to sensitize employees as well as private players to the topic of Social Engineering (SE) by taking up the role of a SE penetration tester in a virtually simulated company. While exploiting common vulnerabilities to conduct frequently used SE attack methods, players can gain sustainable awareness for SE. The concept of the game has been designed with the help of SE experts from a cybersecurity company to ensure the technical and theoretical accuracy of the SE attack methods and tasks included in the game. In addition to the educational aspect, The Social Engineer should attract the interest of the player and the replay value of the game by including entertaining stories and varied tasks. Our concept enables the game to be highly extensible and flexible regarding different playable scenarios and settings.
Target Groups:
- Companies can use the game as an interactive self-training tool to raise awareness about SE among employees and improve the company’s information security.
- Security experts can let participants of SE training sessions play the game supplementary to traditional classroom lectures.
- Interested individuals can play the game for entertainment purposes at home and get sensitized about SE along the way.
Related Research Papers:
SUPPLEMENTARY MATERIAL
ADDITIONAL LINKS & DOWNLOADS
