Siirry suoraan sisältöön

Information Security Testing and Assessment (5 op)

Toteutuksen tunnus: 5051244-3005

Toteutuksen perustiedot


Ilmoittautumisaika
02.12.2024 - 16.01.2025
Ilmoittautuminen toteutukselle on päättynyt.
Ajoitus
13.01.2025 - 30.04.2025
Toteutus on päättynyt.
Opintopistemäärä
5 op
Lähiosuus
5 op
Toteutustapa
Lähiopetus
Yksikkö
Tekniikka ja liiketoiminta
Toimipiste
Kupittaan kampus
Opetuskielet
englanti
Paikat
10 - 65
Koulutus
Degree Programme in Information and Communications Technology
Tietojenkäsittelyn koulutus
Tieto- ja viestintätekniikan koulutus
Opettajat
Jani Ekqvist
Vastuuopettaja
Jani Ekqvist
Ryhmät
ICTMODictprojSem
MOD ICT Projects & Cybersecurity (International Semester)
PTIVIS22T
Data Networks and Cybersecurity
PTIETS22dncs
PTIETS22 Tietoverkot ja Kyberturva
Opintojakso
5051244

Toteutuksella on 26 opetustapahtumaa joiden yhteenlaskettu kesto on 78 t 0 min.

Aika Aihe Tila
To 16.01.2025 klo 10:00 - 12:00
(2 t 0 min)
Introductory Lecture, Information Security Testing and Assessment 5051244-3005
ICT_C1035_Delta DELTA
Ma 20.01.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 23.01.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 27.01.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 30.01.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 06.02.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 06.02.2025 klo 16:00 - 19:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 10.02.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 13.02.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 24.02.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 27.02.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 03.03.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 06.03.2025 klo 08:00 - 11:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 10.03.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 13.03.2025 klo 08:00 - 11:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 17.03.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 20.03.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 24.03.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 27.03.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 31.03.2025 klo 10:00 - 14:00
(4 t 0 min)
Hackathon, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 07.04.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 10.04.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Ma 14.04.2025 klo 13:00 - 16:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 17.04.2025 klo 09:00 - 12:00
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 24.04.2025 klo 08:45 - 11:45
(3 t 0 min)
Laboratory work, group 2, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
To 24.04.2025 klo 14:00 - 17:00
(3 t 0 min)
Laboratory work, group 1, Information Security Testing and Assessment 5051244-3005
ICT_C3036 Cyberlab / BYOD
Muutokset varauksiin voivat olla mahdollisia.

Arviointiasteikko

H-5

Sisällön jaksotus

Course begins with introductory lecture. In laboratory exercises student learns to use the tools of trade. Finally, students perform a penetration testing engagement and report the results.

Tavoitteet

After completing the course the student:
- is able to explain the basic principles of information security testing and assessment
- can list the phases of information security testing process
- is able to organize and conduct information security risk testing to an SME sector enterprise or similar size organization
- can analyse and report the results from information security testing
- is able to give justified improvement proposals to mitigate information security vulnerabilities

Sisältö

- Social Engineering
- Penetration Testing
- Network Discovery
- Network Service Identification
- Vulnerability Scanning
- Password Cracking

Oppimateriaalit

We are using the TryHackMe.com training platform in addition to ItsLearning. Licenses for the duration of the course will be provided for students taking the course for the first time. Student is responsible for acquiring any additional licenses if course is not completed in time, or on any subsequent implementations.

Tenttien ajankohdat ja uusintamahdollisuudet

Mandatory Practical exam is early April, with re-take chance in April.

Toteutuksen valinnaiset suoritustavat

-

Opiskelijan ajankäyttö ja kuormitus

Lectures 8h
Laboratory assignments 35h
Hackathon 8h
Exam and preparations 9h
Testing project 75h

Arviointimenetelmät ja arvioinnin perusteet

Project report determines the grade. At least 3 successfully tested machines must be reported following the reporting requirements to get 1. Each successfully tested and reported machine above that will increase grade by 1. Incomplete reporting will lower the grade.
Exam is mandatory to pass. Getting 5 in exam increases overall grade by 1.
Attendance in Hackathon is mandatory to pass the course.
Laboratory assignments: returning at least 90% of the graded assignments by deadline will increase overall grade by 1.

Hylätty (0)

Student is unable to perform and report a penetration testing engagement independently.

Arviointikriteerit, tyydyttävä (1-2)

Student understands the basics of penetration testing and is able to perform a penetration test against a web application independently. Student can write an understandable and actionable report about the test results.

Arviointikriteerit, hyvä (3-4)

Student has a good grasp of information security testing methodologies and tools. Student can independently test various types of internet connected applications. Student can write an understandable and actionable report about the test results that contains guidance for both the management and the developers responsible for the application.

Arviointikriteerit, kiitettävä (5)

Student has knowledge and is able to select the best suited tool and methodology for the engagement. Student can independently test most types of internet connected applications. Student can write a clear, concise and actionable report about the test results that effectively guides management decisions and provides the software developers with detailed guidance on both fixing to found issues and methods for avoiding similar issues in the future.

Esitietovaatimukset

Opintojaksot Tietoverkkojen ja tietoturvan perusteet ja Linux and Virtualization

Lisätiedot

All communication will be through ItsLearning.

Siirry alkuun