KYBS2001 Introductory Penetration Testing and Security Assessment (5 cr)

Study level:
Advanced studies
Grading scale:
0-5
Language:
English
Responsible organisation:
Faculty of Information Technology
Curriculum periods:
2020-2021, 2021-2022, 2022-2023, 2023-2024

Description

Summary

This course will explore foundations of penetration testing and security assessment from a cybersecurity professional perspective. We will explore basic/starting techniques and tools necessary to perform in real world/companies in relation to web-security, software security, network security, server security, database security, cloud security, mobile device security, IoT security. This course will also explore and practice the less technical aspects of penetration testing and security assessments such as various/optimal reporting templates and standards, various/optimal standards/regulations to follow in certain types of tests and assessments.

Completion methods:
Exercise Assignments, Final Report.

Course workload:
Exercise Assignment tasks: 5 * 3h = 15h
Final Report task: 10h
Online Assistance (Q&A): 5 * 2h = 10h
Self-study (includes: going over materials of 10 lectures at own-pace): 90h + 10 * 1h = 100 h

Assessment details:

Exercise Assignment task: 20 points / exercise ()
Final Report task: 20 points

0: less

Learning outcomes

-

Description of prerequisites

Prerequisites

Pre-Requisite Basic IT Knowledge (0-20) (or equivalent)

-Basic programming skills (5 op) (or equivalent)
-Basic OS/VM skills (5 op) (or equivalent)
-Networking Skills (5 op) (or equivalent)
-Basic Cloud Computing or database skills (5 op) (or equivalent)

Must-have:
-Computer Science
-Information Technology
-Basic and Main Security Concepts

Nice-to-have:
-Linux, command-line, SSH
-VMs, docker
-Kali, OWASP Top10, Metasploit, Nmap, XSS, SQLi
-ITKST56

Completion methods

Method 1

Select all marked parts
Parts of the completion methods
x

Participation in teaching (5 cr)

Type:
Participation in teaching
Grading scale:
0-5
Language:
English

Teaching