Penetration Testing (CMPE578) Course Detail

Course Name Course Code Season Lecture Hours Application Hours Lab Hours Credit ECTS
Penetration Testing CMPE578 Area Elective 3 0 0 3 5
Pre-requisite Course(s)
N/A
Course Language English
Course Type Computer Engineering Elective Courses
Course Level Ph.D.
Mode of Delivery Face To Face
Learning and Teaching Strategies Lecture.
Course Coordinator
Course Lecturer(s)
Course Assistants
Course Objectives The objective of this course is to introduce students to penetration testing concepts and common security challenges about penetration testing process.
Course Learning Outcomes The students who succeeded in this course;
  • Review the necessity of penetration testing.
  • Discuss the general concepts about the penetration tests.
  • Describe the common tools used in penetration tests.
  • Discuss the port scanning and exploitation concepts.
  • Discuss the web application and wireless penetration testing.
Course Content Penetration testing concepts, ethical issues in penetration testing, building a testing infrastructure, legal issues with penetration testing, port scanning, vulnerability scanning, exploitation, password attacks, web application penetration testing, wireless penetration testing, reporting of the obtained test results.

Weekly Subjects and Releated Preparation Studies

Week Subjects Preparation
1 Introduction to penetration testing Chapter 1 (Text Book)
2 Types of penetration tests and ethical hacking projects, Legal issues with penetration testing Lecture Notes Chapter 1 (Text Book)
3 Reconnaissance Chapter 2 (Text Book)
4 Port scanning Lecture Notes Chapter 3 (Text Book)
5 OS Fingerprinting, Vulnerability Scanning Lecture Notes Chapter 3 (Text Book)
6 Exploitation, Metasploit Framework Chapter 4 (Text Book)
7 Midterm --
8 Password Attacks Lecture Notes Chapter 9 (Text Book-2)
9 Social Engineering Chapter 5 (Text Book)
10 Web Application Penetration Testing Lecture Notes Chapter 6 (Text Book)
11 Web application injection attacks Chapter 6 (Text Book)
12 Wireless Penetration Testing Lecture Notes
13 Wireless password Cracking Lecture Notes
14 Reporting process of the penetration test results Lecture Notes, Chapter 7 (Text Book)
15 Review
16 Review

Sources

Course Book 1. The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy, Patrick Emgebretson, Syngress Press, Second edition, August 15, 2013, ISBN-13: 978-0124116443
Other Sources 2. A Hands-On Introduction to Hacking, by Georgia Weidman June 2014, 528 pp. ISBN: 978-1-59327-564-8.
3. Gray Hat Hacking The Ethical Hackers Handbook, 3rd Edition , Allen Harper, Shon Harris, Jonathan Ness, Chris Eagle, Gideon Lenkey (Author), Terron Williams, third edition, January 6, 2011 | ISBN-10: 0071742557 .

Evaluation System

Requirements Number Percentage of Grade
Attendance/Participation - -
Laboratory - -
Application - -
Field Work - -
Special Course Internship - -
Quizzes/Studio Critics - -
Homework Assignments - -
Presentation - -
Project 1 30
Report - -
Seminar - -
Midterms Exams/Midterms Jury 1 35
Final Exam/Final Jury 1 35
Toplam 3 100
Percentage of Semester Work 65
Percentage of Final Work 35
Total 100

Course Category

Core Courses
Major Area Courses
Supportive Courses X
Media and Managment Skills Courses
Transferable Skill Courses

The Relation Between Course Learning Competencies and Program Qualifications

# Program Qualifications / Competencies Level of Contribution
1 2 3 4 5
1 To become familiar with the state-of-the art and the literature in the software engineering research domain X
2 An ability to conduct world-class research in software engineering and publish scholarly articles in top conferences and journals in the area
3 Be able to conduct quantitative and qualitative studies in software engineering X
4 Acquire skills needed to bridge software engineering academia and industry and to develop and apply scientific software engineering approaches to solve real-world problems
5 An ability to access information in order to follow recent developments in science and technology and to perform scientific research or implement a project in the software engineering domain.
6 An understanding of professional, legal, ethical and social issues and responsibilities related to Software Engineering. X
7 Skills in project and risk management, awareness about importance of entrepreneurship, innovation and long-term development, and recognition of international standards of excellence for software engineering practices standards and methodologies.
8 An understanding about the impact of Software Engineering solutions in a global, environmental, societal and legal context while making decisions. X
9 Promote the development, adoption and sustained use of standards of excellence for software engineering practices.

ECTS/Workload Table

Activities Number Duration (Hours) Total Workload
Course Hours (Including Exam Week: 16 x Total Hours) 16 3 48
Laboratory
Application
Special Course Internship
Field Work
Study Hours Out of Class 16 2 32
Presentation/Seminar Prepration
Project 1 15 15
Report
Homework Assignments
Quizzes/Studio Critics
Prepration of Midterm Exams/Midterm Jury 1 15 15
Prepration of Final Exams/Final Jury 1 20 20
Total Workload 130