ECTS - Penetration Testing
Penetration Testing (CMPE578) Course Detail
| Course Name | Course Code | Season | Lecture Hours | Application Hours | Lab Hours | Credit | ECTS |
|---|---|---|---|---|---|---|---|
| Penetration Testing | CMPE578 | Area Elective | 3 | 0 | 0 | 3 | 5 |
| Pre-requisite Course(s) |
|---|
| N/A |
| Course Language | English |
|---|---|
| Course Type | Elective Courses Taken From Other Departments |
| Course Level | Natural & Applied Sciences Master's Degree |
| Mode of Delivery | Face To Face |
| Learning and Teaching Strategies | Lecture. |
| Course Lecturer(s) |
|
| Course Objectives | The objective of this course is to introduce students to penetration testing concepts and common security challenges about penetration testing process. |
| Course Learning Outcomes |
The students who succeeded in this course;
|
| Course Content | Penetration testing concepts, ethical issues in penetration testing, building a testing infrastructure, legal issues with penetration testing, port scanning, vulnerability scanning, exploitation, password attacks, web application penetration testing, wireless penetration testing, reporting of the obtained test results. |
Weekly Subjects and Releated Preparation Studies
| Week | Subjects | Preparation |
|---|---|---|
| 1 | Introduction to penetration testing | Chapter 1 (Text Book) |
| 2 | Types of penetration tests and ethical hacking projects, Legal issues with penetration testing | Lecture Notes Chapter 1 (Text Book) |
| 3 | Reconnaissance | Chapter 2 (Text Book) |
| 4 | Port scanning | Lecture Notes Chapter 3 (Text Book) |
| 5 | OS Fingerprinting, Vulnerability Scanning | Lecture Notes Chapter 3 (Text Book) |
| 6 | Exploitation, Metasploit Framework | Chapter 4 (Text Book) |
| 7 | Midterm | -- |
| 8 | Password Attacks | Lecture Notes Chapter 9 (Text Book-2) |
| 9 | Social Engineering | Chapter 5 (Text Book) |
| 10 | Web Application Penetration Testing | Lecture Notes Chapter 6 (Text Book) |
| 11 | Web application injection attacks | Chapter 6 (Text Book) |
| 12 | Wireless Penetration Testing | Lecture Notes |
| 13 | Wireless password Cracking | Lecture Notes |
| 14 | Reporting process of the penetration test results | Lecture Notes, Chapter 7 (Text Book) |
| 15 | Review | |
| 16 | Review |
Sources
| Course Book | 1. The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy, Patrick Emgebretson, Syngress Press, Second edition, August 15, 2013, ISBN-13: 978-0124116443 |
|---|---|
| Other Sources | 2. A Hands-On Introduction to Hacking, by Georgia Weidman June 2014, 528 pp. ISBN: 978-1-59327-564-8. |
| 3. Gray Hat Hacking The Ethical Hackers Handbook, 3rd Edition , Allen Harper, Shon Harris, Jonathan Ness, Chris Eagle, Gideon Lenkey (Author), Terron Williams, third edition, January 6, 2011 | ISBN-10: 0071742557 . |
Evaluation System
| Requirements | Number | Percentage of Grade |
|---|---|---|
| Attendance/Participation | - | - |
| Laboratory | - | - |
| Application | - | - |
| Field Work | - | - |
| Special Course Internship | - | - |
| Quizzes/Studio Critics | - | - |
| Homework Assignments | - | - |
| Presentation | - | - |
| Project | 1 | 30 |
| Report | - | - |
| Seminar | - | - |
| Midterms Exams/Midterms Jury | 1 | 35 |
| Final Exam/Final Jury | 1 | 35 |
| Toplam | 3 | 100 |
| Percentage of Semester Work | 65 |
|---|---|
| Percentage of Final Work | 35 |
| Total | 100 |
Course Category
| Core Courses | |
|---|---|
| Major Area Courses | X |
| Supportive Courses | |
| Media and Managment Skills Courses | |
| Transferable Skill Courses |
The Relation Between Course Learning Competencies and Program Qualifications
| # | Program Qualifications / Competencies | Level of Contribution | ||||
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | 5 | ||
| 1 | An ability to apply knowledge of mathematics, science, and engineering. | X | ||||
| 2 | An ability to design and conduct experiments, as well as to analyze and interpret data. | X | ||||
| 3 | An ability to design a system, component, or process to meet desired needs. | X | ||||
| 4 | An ability to function on multi-disciplinary domains. | |||||
| 5 | An ability to identify, formulate, and solve engineering problems. | X | ||||
| 6 | An understanding of professional and ethical responsibility. | |||||
| 7 | An ability to communicate effectively. | |||||
| 8 | Recognition of the need for, and an ability to engage in life-long learning. | |||||
| 9 | A knowledge of contemporary issues. | X | ||||
| 10 | An ability to use the techniques, skills, and modern engineering tools necessary for engineering practice. | X | ||||
| 11 | Skills in project management and recognition of international standards and methodologies | X | ||||
| 12 | An ability to produce engineering products or prototypes that solve real-life problems. | X | ||||
| 13 | Skills that contribute to professional knowledge. | |||||
| 14 | An ability to make methodological scientific research. | |||||
| 15 | An ability to produce, report and present an original or known scientific body of knowledge. | |||||
| 16 | An ability to defend an originally produced idea. | |||||
ECTS/Workload Table
| Activities | Number | Duration (Hours) | Total Workload |
|---|---|---|---|
| Course Hours (Including Exam Week: 16 x Total Hours) | 16 | 3 | 48 |
| Laboratory | |||
| Application | |||
| Special Course Internship | |||
| Field Work | |||
| Study Hours Out of Class | 16 | 2 | 32 |
| Presentation/Seminar Prepration | |||
| Project | 1 | 15 | 15 |
| Report | |||
| Homework Assignments | |||
| Quizzes/Studio Critics | |||
| Prepration of Midterm Exams/Midterm Jury | 1 | 15 | 15 |
| Prepration of Final Exams/Final Jury | 1 | 20 | 20 |
| Total Workload | 130 | ||