KYBS2001 Introductory Penetration Testing and Security Assessment (5 cr)

Summary

This course will explore foundations of penetration testing and security assessment from a cybersecurity professional perspective. We will explore basic/starting techniques and tools necessary to perform in real world/companies in relation to web-security, software security, network security, server security, database security, cloud security, mobile device security, IoT security.

This course will also explore and practice the less technical aspects of penetration testing and security assessments such as various/optimal reporting templates and standards, various/optimal standards/regulations to follow in certain types of tests and assessments.

Completion methods & Course workload

On-line course.

Exercise Assignment tasks: 5 * 3h = 15h

Final Report task: 10h

Online Assistance (Q&A): 5 * 2h = 10h

Self-study (includes going over materials of 10 lectures at own pace): 90h + 10 * 1h = 100 h

Assessment details

Exercise Assignment task: 20 points / exercise

Final Report task: 20 points

Students understood the background knowledge, techniques and tools about penetration testing and security assessment.

Pre-Requisite Basic IT Knowledge (0-20) (or equivalent)

· Basic programming skills (5 op) (or equivalent)

· Basic OS/VM skills (5 op) (or equivalent)

· Networking Skills (5 op) (or equivalent)

· Basic Cloud Computing or database skills (5 op) (or equivalent)

Must-have:

· Computer Science

· Information Technology

· Basic and Main Security Concepts

Nice-to-have:

· Linux, command-line, SSH

· VMs, docker

· Kali, OWASP Top10, Metasploit, Nmap, XSS, SQLi

ITKST56