Course Information
Language:
The course and the exam will be in English.
Credits:
Lectures mode:
The course will be organized by following the "dual mode", which means that each lecture will be available at the same time in the classroom and online.
Each student can choose whether to follow the lecture at the university or at home. All lectures will be recorded and uploaded at the end of the lecture.
Schedule:
II semester (course schedule is published HERE).
Discord server:
Students enrolled for this course are invited to join THIS Discord server.
Course Content
"Ethical hacking" is a hands-on course, where each theoretical topic is followed by a lab.
The course has five different modules:
- Network security - network analysis and monitoring; securing internet communications; packet sniffing and spoofing; TCP attacks; firewalls
- Hardware security - meltdown attack; spectre attack
- Web security - cross-site scripting attack; HTTP request smuggling
- Pwn - shellcode; buffer overflow; return-to-libc; format string attack; race condition vulnerability
- Reverse-engineering - static analysis; reversing in x86; reversing; patching; gdb; debuggers; symbolic execution
Grading Criteria
To complete the exam, the student has two options.
- Option One (CTF). If choosing the "Option One", the student is asked to face a two-hour practical exam, in which he/she is provided a CTF challenge that covers the topics of the course. To see the rules of the first option, please, visit this web page.
- Option Two (Project). If choosing the "Option Two", the student is asked to individually work on a project (group of people for the same project are also allowed upon discussion with the teachers). The estimated effort for each project is around two full time weeks. For more informatio about the project option, please, visit this web page. If you plan to go with the project option, please, first send an email to all lecturers.