CSC 4992 Cyber Security Practice -...
Transcript of CSC 4992 Cyber Security Practice -...
CSC4992CyberSecurityPractice
FengweiZhang
WayneStateUniversity CSC4992CyberSecurityPractice 1
WhoAmI?
• FengweiZhang– AssistantProfessorofComputerScience– Office:MaccabeesBuilding,Room14109.3– Emai:fengweiatwaynedotedu– Website:http://fengwei.me
• CourseInformation– Coursewebsite:http://www.cs.wayne.edu/fengwei/18sp-csc4992/index.html
– OfficeHours:Friday,01:00PM-02:30PM
WayneStateUniversity CSC4992CyberSecurityPractice 2
WhyStudySecurity?
WayneStateUniversity CSC4992CyberSecurityPractice 3
WhyStudySecurity?
It’scooltobeahackerIt’sahottopicandmediatalkaboutitIt’susefulforfindingajob
WayneStateUniversity CSC4992CyberSecurityPractice 4
CourseOverview
• Providinghands-onexperienceinplayingwithsecuritysoftwareandnetworksystemsinalivelaboratoryenvironment
• Takingbothoffensiveanddefensemethodstohelpstudentexploresecuritytoolsandattacksinpractice
• Focusingonattacks,hackingfundamentals,defenses.
WayneStateUniversity CSC4992CyberSecurityPractice 5
CourseObjectives
• Understandingonreal-worldsecurityvulnerabilities,exploitsanddefenses
• Havinghands-onlabsinnetworkandsystemsecurityexperiments
• Learningknowledgeofpracticalsecurityproblemsandtheirsolutions
WayneStateUniversity CSC4992CyberSecurityPractice 6
CourseLabs
• Lab1:PacketSniffingandWireshark• Lab2:BufferOverflow• Lab3:ScanningandReconnaissance• Lab4:MetasploitFramework• Lab5:ReverseEngineeringandObfuscation• Lab6:OSSecurityfortheInternetofThings• Lab7:WirelessExploitation&Defenses• Lab8:Firewalls&IntrusionDetectionSystems(IDS)
WayneStateUniversity CSC4992CyberSecurityPractice 7
LabAssignments
• 8labassignments– Sourcecode– WriteupPDF
• SubmittingviaBlackboardwithasingleZipfile– http://blackboard.wayne.edu
• Makingsureyourfilecanbeunzippedacrossplatforms(Windows,MacOSX,Linux)
WayneStateUniversity CSC4992CyberSecurityPractice 8
TeamProjects
• Aresearchprojectwith3-5individuals– buildinganewsystem– improvinganexistingtechnique– performingalargecasestudy
• ProjectproposalsdueonFeb21– a2-pagedescription
• ProjectpresentationsareonApril18&20• ProjectfinalreportsdueonApril20
WayneStateUniversity CSC4992CyberSecurityPractice 9
CoursePrerequisites
• CSC2110ComputerScienceIandCSC2111ComputerScienceILab
• Basiccomputersecurityconcepts• BasicC,operatingsystems,andcomputernetworks
WayneStateUniversity CSC4992CyberSecurityPractice 10
PoliciesonLateSubmissions
• Labandprojectdeadlineswillbefirm.• Latehomeworkwillbeacceptedwitha10%reductioningradeforeachdaytheyarelateby.
• Onceahomeworkassignmentisdiscussedinclass,submissionswillnolongerbeaccepted.
WayneStateUniversity CSC4992CyberSecurityPractice 11
GradingPolicy
WayneStateUniversity CSC4992CyberSecurityPractice 12
GradingScale
WayneStateUniversity CSC4992CyberSecurityPractice 13
Thegradesforthecoursewillbebaseduponthepercentagesgivenbelow
AcademicIntegrity
• PleasereadtheUniversity'sAcademicIntegrityPage– http://doso.wayne.edu/academic-integrity.html
• WSUStudentCodeofConduct.– http://doso.wayne.edu/assets/codeofconduct.pdf
WayneStateUniversity CSC4992CyberSecurityPractice 14
StudentDisabilitiesServices
• Ifyouhaveadocumenteddisabilitythatrequiresaccommodations,youwillneedtoregisterwithStudentDisabilityServicesforcoordinationofyouracademicaccommodations.
• TheStudentDisabilityServices(SDS)officeislocatedintheAdamanyUndergraduateLibrary.TheSDStelephonenumberis313-577-1851or313-202-4216(Videophoneuseonly).
WayneStateUniversity CSC4992CyberSecurityPractice 15
OtherResources
• VMwaresoftwareandMicrosoftproductsthroughDreamsparkatWSU.– InstallVMWareonyourlaptopsforhomedesktops– http://apps.eng.wayne.edu/MPStudents/Dreamspark.aspx
• KaliLinux-PenetrationTestingLinuxDistribution.– https://www.kali.org/downloads/
WayneStateUniversity CSC4992CyberSecurityPractice 16
Lab0
• MakesureyoucanloginasCSC4992studentonZeroClient– UseyourWSUaccessIDandpass– ProvideyouVMsforlabexperiments
WayneStateUniversity CSC4992CyberSecurityPractice 17
Lab0(cont’d)• [email protected]– ListHomepage(webinterfaceforsubscriberstojoin/leavelist,postmessages,viewarchives):http://lists.wayne.edu
• Sendanemailtothelisttointroduceyourselfbynextclass
• Sendazippedtest.txtfileonBackboardbythisweek
WayneStateUniversity CSC4992CyberSecurityPractice 18
NextClass
• Lab1:PacketSniffingandWireshark– Beprepared!
WayneStateUniversity CSC4992CyberSecurityPractice 19