🕵️

SOCIAL ENGINEERING ESCAPE ROOM

A 60-Minute Coordinated Attack Simulation

00

The Scenario

Your company is under coordinated attack

Over 48 hours, attackers will hit six vectors

Your job: Spot the attacks. Make the right calls. Survive.

This is a simulation.
But the tactics are real.

01

📞

Stage 1: PRETEXTING

An attacker calls your finance team

They claim to be from IT support

They ask about vendor banking details

Your decision: Do you engage? Provide info? Escalate?
9 minutes

02

🔍

Stage 2: OSINT

The attacker researches {{company}} online

LinkedIn profiles. GitHub commits. Press releases.

Which piece is the biggest risk?

Your task: Review the data. Rank by danger.
10 minutes

03

📧

Stage 3: PHISHING

Eight emails arrive in {{company}}'s inbox

Seven are real. One is a spear phish.

Can you spot the fake?

Your challenge: Find the malicious email.
9 minutes

04

🎙️

Stage 4: VISHING & DEEPFAKE

Your CFO leaves a voicemail

They request an emergency wire transfer

But is it really them?

High pressure: 2-hour deadline. What do you do?
9 minutes

05

🚪

Stage 5: PHYSICAL

Someone in a delivery uniform appears at your badge gate

They're holding a package. They need to get in.

Do you let them through?

Your decision: Verify? Escalate? Allow?
8 minutes

06

🔗

Stage 6: SUPPLY CHAIN

A trusted vendor requests a banking update

But their email has been compromised

Which requests do you approve?

Your task: Spot the compromised vendor.
8 minutes

07

🎯

FINAL BOSS: THE DEBRIEF

Rebuild the 48-hour attack timeline

Map the control failures

Identify what would have stopped it

Every employee is a sensor.
Your job: Teaching them what to detect.

↑ ↓ SPACE to advance

08

WELL DONE

You survived a coordinated attack

What will you do differently on Monday?

Trust your instincts.
Verify. Escalate. Report.