Study-unit CYBERSECURITY LAB.
| Course name | Informatics |
|---|---|
| Study-unit Code | A004821 |
| Curriculum | Artificial intelligence |
| Lecturer | Francesco Santini |
| Lecturers |
|
| Hours |
|
| CFU | 6 |
| Course Regulation | Coorte 2023 |
| Supplied | 2024/25 |
| Learning activities | Affine/integrativa |
| Area | Attività formative affini o integrative |
| Sector | INF/01 |
| Type of study-unit | Opzionale (Optional) |
| Type of learning activities | Attività formativa monodisciplinare |
| Language of instruction | English |
| Contents | Hardening of an operating system, concepts and examples. Network security assessment, tools and their use. Group simulation of a defense BlueTeam in a CybeRange. |
| Reference texts | - Mastering Linux Security and Hardening - Third Edition by Donald A. Tevault Released February 2023 Publisher(s): Packt Publishing ISBN: 9781837630516 - Network Security Assessment, 3rd Edition by Chris McNab Released December 2016 Publisher(s): O'Reilly Media, Inc. ISBN: 9781491910955 - The Ubuntu Documentation and Security Guide (https://ubuntu.com/security/certifications/docs) - Linux hardening checklists and tips, and other online material |
| Educational objectives | The goal is to familiarize students with the issues and solutions related to securing an operating system (Linux) across various areas including user management, certificate management, and firewall management. Students will directly implement the examples discussed in the class. Additionally, they will be introduced to and utilize various network security assessment tools in a controlled laboratory setup. Finally, students will have the opportunity to gain hands-on experience in analyzing network attacks using the Cyberange platform. |
| Prerequisites | Fundamentals of Networking and Operating Systems |
| Teaching methods | Lectures and laboratory exercises. |
| Other information | Attendance of lectures is strongly suggested. Website: www.unistudium.unipg.it For the exam schedule, see: www.informatica.unipg.it |
| Learning verification modality | Assignment of a project and oral exam on the program carried out in class. For information on support services for students with disabilities and/or DSA visit the page http://www.unipg.it/disabilita-e-dsa |
| Extended program | Linux hardening (26 hours): Securing Administrative User Accounts, Securing Normal User Accounts, Securing Your Server with a Firewall, SSH Hardening, Encryption Technologies (GPG, eCryptfs, VeraCrypt, OpenSSL and the Public Key Infrastructure), Access Control Lists and Shared Directory Management, Kernel Hardening and Process Isolation, Scanning, Auditing, and Hardening (antivirus, autd, ausearch and aureport, OpenSCAP), Logging and Log Security, Vulnerability Scanning and Intrusion Detection (IPFire, Snort and Security Onion, Lynis), Ubuntu security compliance and certifications (FIPS 140, CIS, DISA-STIG, Common Criteria). Network Security Assessment (16 hours): tools (nmap, metasploitable, OpenVAS, Nikto, Hydra) and their use, Local Network Discovery, Service Fingerprinting, Assessing Common Network Services (FTP, SSH, Telnet, etc), Assessing Web Servers, Assessing Mail Services, Assessing VPN Services, Assessing Data Stores. Playing Blue Team in a CyberRange with different cases (10 hours). |