ITSY 2330 Intrusion
Detection
Professor: Ronald L. Mendell
Phone: 512-692-1074
Office Hours: Saturdays
12:30 – 1:30 pm
Email: rmendell@austincc.edu
Web site: http://www.austincc.edu/rmendell
Description
Understanding “hacking”
methodologies. Understanding computer
information systems security monitoring, intrusion detection, and crisis
management. Includes alarm management, signature configuration, sensor
configuration, and troubleshooting components. Emphasizes identifying,
resolving, and documenting network crises and activating the response team.
Prerequisites
ITSY 1300
Class Structure
Class time will contain lectures, demonstrations and labs.
Exams
Two exams will be given, a midterm and a final. Exams must be taken on the
scheduled date. If you miss an exam you will receive a grade of zero for that
exam, unless prior arrangements have been made to take the comprehensive final,
or there was a compelling, verifiable personal emergency that prevented your
attendance and giving prior notice. There are no “make-up exams,” rather the
student will be permitted, if approved by the instructor, to take a
comprehensive final exam in lieu of the missing exam.
Grade Policy:
Grades will be based on concepts and practical application.
Exams = 80%
Labs and Class Participation = 20%
Grade Scale:
A = 90-100
B = 80-89
C = 70-79
D = 60-69
F = below 60
Required Text
Hacking
Exposed, Network Security and Secrets Sixth Edition
Stuart McClure, Joel Scambray
(McGraw Hill, Osborne; 2009)
ISBN: 978-0-07-161374-3
At the completion of this course, the student will have demonstrated the
ability to:
Understand the fundamentals of network “hacking”
Identify and assess current and anticipated security risks and vulnerabilities
Monitor, evaluate, and test security conditions and environment
Learn the steps of footprinting, scanning, and enumeration
Learn the specifics of operating systems’ vulnerabilities
Hacking Windows and Unix
Monitor, report, and resolve security problems
Understand remote connectivity and VOIP vulnerabilities
Principal attacks
Probing into network devices
Implement and enforce system and user security requirements
Detect, monitor, and report security problems
Understand hardware and software attacks
Evaluate present software and system configuration
Develop countermeasures
Examining wireless hacking
Methods and tactics
Hacking the user
Exploiting vulnerabilities
Web and Internet Attacks
Analyze problem and research solutions
Query existing knowledge base
Identify, test, and implement resolutions
Manage problem resolution
Document hardware and software problems and resolutions
Attendance and Withdrawal
Students are expected to attend classes and will be held responsible for
all material covered in class. Regular attendance helps ensure satisfactory
progress towards completion of the course. It is the student's responsibility
to complete a withdrawal form in the Admissions Office if they wish to
withdraw from this class. The instructor may withdraw students from this
class if their absences exceed 10% of the total number of class meetings.
The last date to withdraw for this semester is available in the ACC Academic calendar posted on the ACC Web site.
It is not the responsibility of the instructor to withdraw the students from their
class even though the instructor has the prerogative to do so under the
above listed circumstances.
ALERT:
New state law for new students. No more than six course withdrawals throughout
your undergraduate education, regardless of how many colleges
you attend. Students who entered college before fall 2007 are not affected.
(Ask a counselor for details.)
Incomplete
A student may receive a temporary grade of "I" (Incomplete) at the
end of the semester only if ALL of the following conditions
are satisfied:
The student is unable to complete the course during the semester due to
circumstances beyond their control.
·
The student must have earned at least half of the grade points needed for a
"C" by the end of the semester.
The request for the grade must be made in person at the instructor's office and
necessary documents completed.
To remove an "I", the student must complete the course by two weeks
before the
end of the following semester. Failure to do so will result in the grade
automatically
reverting to an "F".
Academic Integrity
Acts prohibited by the college, for which discipline may be administered,
are scholastic dishonesty (including but not limited to cheating on an exam or
quiz), plagiarizing, and unauthorized collaboration with another in preparing
outside work. Academic work submitted by students shall be the result of their
thought, research or self-expression. Academic work is defined as, but not
limited to, tests and quizzes (whether taken electronically or on paper);
projects, (either individual or group); classroom presentations, and homework.
Freedom of Expression
It is expected that faculty and students will respect the views of others
when
expressed in classroom discussions.
Students With Disabilities
Each ACC campus offers support services for students with documented
physical
or psychological disabilities. Students with disabilities must request
reasonable
accommodations through the Office for Students with Disabilities on the campus
where
they expect to take the majority of their classes. Students are encouraged to
do this
three weeks before the start of the semester. (Please refer to the current ACC
Student Handbook.)
Class Schedule: The following is a tentative schedule for the course. The instructor reserves the right to make schedule changes based on the needs of the students in the class.
|
Date |
Chapter |
Assignment |
|
|
||
|
08/29 |
1 |
Footprinting |
|
09/05 |
2 |
Scanning |
|
09/12 |
3 |
Enumeration |
|
09/19 |
4 |
Hacking Windows |
|
09/26 |
5 |
Hacking Unix |
|
10/03 |
6 |
Remote Connectivity and VOIP Hacking |
|
10/10 |
EXAM 1 |
Midterm Exam |
|
10/17 |
7 |
Network Devices |
|
10/24 |
8 |
Wireless Hacking |
|
10/31 |
9 |
Hacking Hardware |
|
11/07 |
10 |
Hacking Code |
|
11/14 |
11 |
Web Hacking |
|
11/21 |
12 |
Hacking the Internet User |
|
11/28 |
No Class |
Thanksgiving Weekend |
|
12/05 |
|
The Future of Intrusion and Hacking Review of the Course |
|
12/12 |
|
Final Exam |