Course Objectives: |
Security weaknesses in the information and communication systems can lead to the failure or misuse of these systems, loss of life, large-scale economic damage, deterioration of public order and / or violation of national security. With this course, it is aimed to understand the security weaknesses / threats existing in information systems and to raise awareness about the measures to be taken against cyber attacks. |
Course Content: |
Virtual machine setup for Lab, introduction to Linux operation, basic network concepts, targeted information gathering and vulnerability analysis, Reverse Shell Bind Shell concepts, exploit development, explotation framework and automated tools, network security tests, file transfers and tunneling techniques, password attacks, DOS (Denail of Service) decommission attack tests, security tests for wireless networks, web openings and testing methods, security test applications on voip networks, social engineering, pivoting, pentest report writing |
Course Learning Outcomes (CLOs) are those describing the knowledge, skills and competencies that students are expected to achieve upon successful completion of the course. In this context, Course Learning Outcomes defined for this course unit are as follows:
|
|
Knowledge
(Described as Theoritical and/or Factual Knowledge.)
|
Skills
(Describe as Cognitive and/or Practical Skills.)
|
1) Uses basic Linux commands.
|
2) Detects at the basic level network security vulnerabilities and takes necessary security measures.
|
3) Recognizes the vulnerabilities that can occur in web applications.
|
Competences
(Described as "Ability of the learner to apply knowledge and skills autonomously with responsibility", "Learning to learn"," Communication and social" and "Field specific" competences.)
|
1) Learns cyber security applications.
|
2) Learn to collect information about vulnerabilities in systems.
|
3) earn basic encryption structures.
|
Week |
Subject |
Materials Sharing * |
|
Related Preparation |
Further Study |
1) |
Introduction to cyber security: basic concepts |
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
2) |
Primitive symmetric encryption algorithms
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
3) |
Primitive symmetric encryption algorithms
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
4) |
Block cipher algorithms
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
5) |
Block cipher algorithms
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
6) |
Streaming encryption algorithms |
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
7) |
MAC and Hash Algorithms |
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
8) |
Midterm |
|
|
9) |
Asymmetric encryption algorithms
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
10) |
Asymmetric encryption algorithms, Attack types and Security Protocols |
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
11) |
Malware and analysis |
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
12) |
Installation environment and basic Linux commands |
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
13) |
Linux basic commands and Basic network concept
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
14) |
Project presentation
|
M. Alparslan Akyıldız, Uygulamalarla Siber Güvenliğe Giriş, Gazi Kitabevi, 2020. Reading the related chapter and other resources to be obtained
|
|
16) |
Final Exam |
|
|
(KPLOs and SPLOs are the abbreviations for Key & Sub- Programme Learning Outcomes, respectively. )
|
Programme Learning Outcomes |
Contribution Level (from 1 to 5) |
1) |
Explains the basic, theoretical and practical information in the field of information security technology. |
5 |
|
1.1 Defines the corporate cyber security rules and guidelines.
|
5 |
|
1.2 Information Security Creates procedure and control components |
5 |
|
1.3 Identify non-technological tools and methods against cyber attack. |
5 |
|
1.4 Identifies the methods and methods of technological methods against cyber attack. |
5 |
|
1.5 User training and security awareness describes the importance of cyberspace. |
5 |
|
1.6 Recall national and international legislation and regulations related to the field of Information Security Technology. |
1 |
|
1.7 Defines the fundamentals of programming and algorithm information. |
1 |
|
|
|
2) |
Know and analyze cyber assets in terms of information security. |
5 |
|
2.1 Lists the tasks and responsibilities required to identify and prevent any exploitation of hardware. |
5 |
|
2.2 Lists the tasks and responsibilities required to identify and prevent any abuse that may occur in software components. |
5 |
|
2.3 Lists the tasks and responsibilities required to identify and prevent any abuse that may occur in local area networks. |
5 |
|
|
|
3) |
Experience the cyber security risk management system. |
5 |
|
3.1 Follow the patches of information technology systems published against known cyber security gaps. |
5 |
|
3.2 Explains the importance of authorizing users as much as they can. |
5 |
|
3.3 Explains the necessary policies and processes for effective event management. |
5 |
|
3.4 Explains the importance of monitoring the cyber systems for the correct structuring of the powers, the realization of the realized, failed or failed cyber attacks, the timely response to the protection and the fulfillment of the legal requirements. |
5 |
4) |
Applies the theoretical knowledge learned in business life for a semester. |
1 |
|
4.1 Experiences all processes in business life. |
1 |
|
4.2 Takes part in activities related to the field of education in a business operating in the field. |
1 |
|
4.3 Questions the application with theoretical knowledge. |
1 |
|
4.4 Compiles the knowledge and experience gained in the field. |
1 |
5) |
Acquires the competencies defined as the institutional outcomes of Beykoz University on the basic level, inline with the expectations of business world and the society. |
1 |
|
5.1 Acquires competency of analyzing and solving the problems. |
1 |
|
5.2 Has awareness for ethical and social responsibility. |
1 |
|
5.3 Takes responsibility as a team member in works and operations of his/her field. |
1 |
|
5.4 Is aware of written, verbal communication and interaction. |
1 |
|
5.5 Follows the developments of advanced technology and digital transformation. |
1 |
|
5.6 Acquires the awareness for lifelong learning. |
1 |
|
5.7 Has awareness about citizenship competency. |
1 |
|
5.8 Evaluates the developments of his/her field with the understanding of an entrepreneur. |
1 |
|
5.9 Acquires communication in a Foreign Language (English) competence defined on the level of at least A2 in European Language Portfolio. (In programs whose medium of instruction is English, on the level of B1). |
1 |
|
|
|
WORKLOAD OF TEACHING & LEARNING ACTIVITIES |
Teaching & Learning Activities |
# of Activities per semester |
Duration (hour) |
Total Workload |
Course |
14 |
3 |
42 |
Laboratory |
0 |
0 |
0 |
Application |
0 |
0 |
0 |
Special Course Internship (Work Placement) |
0 |
0 |
0 |
Field Work |
0 |
0 |
0 |
Study Hours Out of Class |
14 |
2 |
28 |
Presentations / Seminar |
0 |
0 |
0 |
Project |
0 |
0 |
0 |
Homework Assignments |
1 |
10 |
10 |
Total Workload of Teaching & Learning Activities |
- |
- |
80 |
WORKLOAD OF ASSESMENT & EVALUATION ACTIVITIES |
Assesment & Evaluation Activities |
# of Activities per semester |
Duration (hour) |
Total Workload |
Quizzes |
2 |
6 |
12 |
Midterms |
1 |
15 |
15 |
Semester Final Exam |
1 |
20 |
20 |
Total Workload of Assesment & Evaluation Activities |
- |
- |
47 |
TOTAL WORKLOAD (Teaching & Learning + Assesment & Evaluation Activities) |
127 |
ECTS CREDITS OF THE COURSE (Total Workload/25.5 h) |
5 |