Cyber Security & Ethical Hacking

The course introduces the students to cybersecurity and ethical hacking. The course will help one learn how systems and networks can be protected from cyber threats. It also provides an overview of the different tools and techniques an ethical hacker uses in order to identify vulnerabilities.

It helps a student practically in safeguarding digital environments and staying updated about any potential security breaches.

Course Content:

• Module 1: Introduction to Cyber Security
• Get an overview of cybersecurity principles, including key concepts, terminologies, and why the need to secure digital assets has become so paramount. Study different types of cyber threats and attack vectors; understand the role of cybersecurity in information protection.
• Module 2: Networking Basics
• Acquire basic knowledge in networking, which is absolutely essential in cybersecurity. Learn network protocols and IP addressing, and how network architecture works. Understand how networks function and how poor network configurations give entry points for attackers.
• Module 3: Security Fundamentals
• Basic concepts of security principles, including confidentiality, integrity, availability – CIA triad. Comprehend the concept of risk management, threat modeling, and security controls. Also, revisit the security practices basics, authentication, authorization, and encryption.
• Module 4: Introduction to Ethical Hacking
• The course begins with the basics of ethical hacking principles and methodologies. Understand the role of an ethical hacker, issues of legality, and how to approach the ethical consideration of penetration testing. Learn about the phases of ethical hacking and the tools used in the process.
• Module 5: Footprinting and Reconnaissance
• Study techniques for gathering information about target systems. Learn about footprinting methods, including passive and active reconnaissance. Understand how to identify potential vulnerabilities by collecting data from various sources.
• Module 6: Scanning and Enumeration
• Learn various ways of scanning to discover live hosts, open ports, and services. Discuss network scanning tools and their uses. Study enumeration techniques for a detailed view of the target systems and services.
• Module 7: Vulnerability Assessment
• Learn how to effectively identify and classify vulnerabilities within systems and networks. Study tools and techniques associated with vulnerability scanning, understand how to interpret the results of a scan. Study prioritization and reporting based on risk.
• Module 8: Exploitation Techniques
• Learn how different vulnerabilities can be exploited to take unauthorized privileged access. Understand common exploits and attack vectors: buffer overflows, SQL injections. Know how to use exploitation tools in an ethical and responsible manner.
• Module 9: Post-Exploitation and Reporting
• Understand the post-exploitation phase, which involves maintaining access and covering your tracks. Research methods for reporting findings, documenting vulnerabilities, and providing remediation recommendations. Understand how imperative it is to report clearly and effectively.
• Module 10: Web Application Security
• Emphasize securing web applications by understanding common web vulnerabilities such as XSS, CSRF, and SQL injection. Understand the tools and techniques of web application security testing in order to identify and address web-based threats.
• Module 11: Network Security
• Learn various measures about network security, such as firewalls, intrusion detection systems, and intrusion prevention systems. Learn about the protection of network infrastructure by studying network segmentation, VPN, and secure protocols of communication.
• Module 12: Incident Response and Management
• Learn about the different processes in responding and managing security incidents. Learn about the different steps of incident response: planning, detection, containment, eradication, and recovery. Learn how to create an Incident Response Plan and perform post-incident activities.
• Module 13: Capstone Project
• Apply your skills in a comprehensive capstone project. Conduct a simulated penetration test, perform vulnerability assessments, and develop a detailed security report. Demonstrate your ability to apply the learned ethical hacking techniques in the real world.