Criminals use Vishing to trick victims in order to commit fraud or for other nefarious purposes. In this presentation we’ll will cover a bit of background, the current state of Vishing attacks along with how fraudsters use these tactics for their benefit. Vishing is often overlooked vector and as a result of CarolinaCon 2016, I wrote PhreakMe; an open source tool that lowers the bar for security professionals to add the Vishing vector to their toolkit. Using this I’ll demonstrate how penetration testers can use open source software to utilize vishing tactics in their tests and how organizations can use this to their benefit. There is only one phishing vendor I am aware of that claims to provide "vishing" services, and PhreakMe is a little different. Mainly because it is OSS and can be adapted and developed depending on the communities needs.