Course Title: Test concepts and procedures for cyber security
Part B: Course Detail
Teaching Period: Term2 2021
Course Code: COSC6235
Course Title: Test concepts and procedures for cyber security
School: 174T School of VE Engineering, Health & Science
Campus: City Campus
Program: C4408 - Certificate IV in Cyber Security
Course Contact: Luke Eberbach
Course Contact Phone: +61 3 9925 4381
Course Contact Email: luke.eberbach@rmit.edu.au
Name and Contact Details of All Other Relevant Staff
Nominal Hours: 60
Regardless of the mode of delivery, represent a guide to the relative teaching time and student effort required to successfully achieve a particular competency/module. This may include not only scheduled classes or workplace visits but also the amount of effort required to undertake, evaluate and complete all assessment requirements, including any non-classroom activities.
Pre-requisites and Co-requisites
NIL
Course Description
This unit provides introductory skills and knowledge required to implement testing procedures for systems in an organisation. These involve application layer testing tools as defined by the Open Web Application Security Project (OWASP), network testing and monitoring tools. The unit examines common threats, ethical hacking principles and introduction to penetration testing, social engineering security issues, enumeration, port scanning, sniffers, footprinting, traffic sniffers and wireless LAN vulnerabilities and contains a solid treatment of intrusions.
National Codes, Titles, Elements and Performance Criteria
National Element Code & Title: |
VU21989 Test concepts and procedures for cyber security |
Element: |
1.Identify typical cyber security application layer testing methodologies and tools |
Performance Criteria: |
1.1 Existing frameworks that identify common application layer vulnerabilities are investigated 1.2 Most common application layer security vulnerabilities are identified 1.3 Current policies to minimize the identified application layer vulnerabilities are enhanced. |
Element: |
2.Use networking security testing methodologies, tools and commands |
Performance Criteria: |
2.1 End to end testing commands for network continuity are demonstrated 2.2 Systematic troubleshooting procedures for network connectivity are demonstrated 2.3 Use of networking monitoring tools are demonstrated |
Element: |
3.Implement the lab testing environment |
Performance Criteria: |
3.1 Lab testing environment is configured 3.2 Using end to end testing commands, the lab environment is tested for functionality |
Element: |
4.Identify common threats and mitigation strategies |
Performance Criteria: |
4.1 Current Trojans, Virus's and Worms are identified 4.2 Methods of Denial of Service (DOS) and Distributed Denial of Service (DDOS) attacks and corresponding mitigation strategies are investigated 4.3 Methods of Domain Name Server (DNS) attacks and corresponding mitigation strategies are identified 4.4 Zero day vulnerabilities are identified 4.5 Common vulnerabilities and exposures (CVE's) are defined 4.6 Heuristics as a methodology for string analysis and their corresponding toolset are identified |
Element: |
5.Demonstrate ethical hacking principles and procedures |
Performance Criteria: |
5.1 Ethical hacking process and procedures are described 5.2 Base level troubleshooting procedures are demonstrated 5.3 Fundamentals of penetration testing are described 5.4 Legal implications of hacking are explained 5.5 Process of footprinting the computer systems of a company is examined 5.6 Methodologies of Enumeration to gather system usernames are described 5.7 Tools to port scan a computer system are demonstrated 5.8 Methodologies of system hacking are described then demonstrated 5.9 Common sniffing tools are described and demonstrated |
Element: |
6.Identify security vulnerabilities of Wireless LANs (WLANs) |
Performance Criteria: |
6.1 WLAN hardware vulnerabilities are identified 6.2 WLAN software issues and vulnerabilities are determined |
Element: |
7.Demonstrate basic scripting for a cyber security environment |
Performance Criteria: |
7.1 Introduction to scripting languages is demonstrated 7.2 Scripts for testing tools are described and demonstrated 7.3 Programming environment for compilation and libraries are identified 7.4 Introduction to scripting basic programming language is described and demonstrated |
Learning Outcomes
Refer to Elements
Details of Learning Activities
You will be involved in the following learning activities to meet requirements for the two clustered competencies (VU21989 and VU21990). Both competencies's learning activities will incorporate
• Lectures
• Tutorials
• Individual work on assignments, practical labs and knowledge based assessments.
Cluster Information:
This course is delivered in a cluster referred to as Cyber Security Concepts. This cluster consists of two units of competencies from the 22334VIC National Unit Code. They are VU21989 (COSC6235) and VU21990 (COSC6236).
You must enrol in both of these courses delivered in this cluster. All the learning and assessment activities will include the components of all competencies VU21989 and VU21990.
Elements and Performance Criteria of VU21989 (COSC6235)
ELEMENT |
PERFORMANCE CRITERIA |
||||||
Elements describe the essential outcomes. |
Performance criteria describe the performance needed to demonstrate achievement of the element. |
||||||
1. Identify typical cyber security application layer testing methodologies and tools |
|
||||||
2. Use networking security testing methodologies, tools and commands |
2.1 End to end testing commands for network continuity are demonstrated 2.2 Systematic troubleshooting procedures for network connectivity are demonstrated 2.3 Use of networking monitoring tools are demonstrated |
||||||
3. Implement the lab testing environment |
3.1 Lab testing environment is configured 3.2 Using end to end testing commands, the lab environment is tested for functionality |
||||||
4. Identify common threats and mitigation strategies |
4.1 Current Trojans, Virus’s and Worms are identified 4.2 Methods of Denial of Service (DOS) and Distributed Denial of Service (DDOS) attacks and corresponding mitigation strategies are investigated 4.3 Methods of Domain Name Server (DNS) attacks and corresponding mitigation strategies are identified 4.4 Zero day vulnerabilities are identified 4.5 Common vulnerabilities and exposures (CVE’s) are defined 4.6 Heuristics as a methodology for string analysis and their corresponding toolset are identified |
||||||
5. Demonstrate ethical hacking principles and procedures |
5.1 Ethical hacking process and procedures are described 5.2 Base level troubleshooting procedures are demonstrated 5.3 Fundamentals of penetration testing are described 5.4 Legal implications of hacking are explained 5.5 Process of footprinting the computer systems of a company is examined 5.6 Methodologies of Enumeration to gather system usernames are described 5.7 Tools to port scan a computer system are demonstrated 5.8 Methodologies of system hacking are described then demonstrated 5.9 Common sniffing tools are described and demonstrated |
||||||
6. Identify security vulnerabilities of Wireless LANs (WLANs) |
6.1 WLAN hardware vulnerabilities are identified 6.2 WLAN software issues and vulnerabilities are determined |
||||||
7. Demonstrate basic scripting for a cyber security environment |
7.1 Introduction to scripting languages is demonstrated 7.2 Scripts for testing tools are described and demonstrated 7.3 Programming environment for compilation and libraries are identified 7.4 Introduction to scripting basic programming language is described and demonstrated |
Elements and Performance Criteria of VU21990 (COSC6236)
ELEMENT |
PERFORMANCE CRITERIA |
Elements describe the essential outcomes. |
Performance criteria describe the performance needed to demonstrate achievement of the element. |
1. Define a cyber security framework for an organisation |
1.1 Definition of information security is developed 1.2 Threat sources for an organisation are identified 1.3 Relationship between data, networks, machines, users and applications in an enterprise is defined 1.4 Introduction to identity and access management (IAM) is clarified 1.5 Security of physical infrastructure of the enterprise is identified and evaluated |
2. Identify the need for cyber security |
2.1 Reasons to protect online identity and personal data are clarified 2.2 Reasons to protect an organisation’s data are explained 2.3 Concept of cyber threat is defined 2.4 Reasons for the need of cyber security professionals are explained |
3. Identify common and emerging cyber security attacks, and techniques |
3.1 Security vulnerabilities and malware are identified and demonstrated 3.2 Threat actors, threat vectors and threat goals are defined 3.3 Techniques used by attackers to infiltrate a system are described and demonstrated 3.4 Characteristics and operation of a cyber-attack are explained 3.5 Trends of cyber threats are investigated 3.6 Cyber-attacks on enterprise infrastructure are identified 3.7 Examples of IOT devices are described and demonstrated 3.8 Security vulnerabilities for IOT devices are defined |
4. Implement methods to protect your data and privacy |
4.1 Techniques to protect personal devices and data are described and implemented 4.2 Authentication techniques are identified and demonstrated 4.3 Methods to protect personal devices from threats are implemented 4.4 Methods and tools to safeguard personal privacy are defined 4.5 Logical and physical access controls are defined and implemented |
5. Implement methods to protect an organisation’s data |
5.1 Common equipment used to protect an organisation from cyber security attacks is identified 5.2 Terms such as botnets, the cyber kill chain process and behavior based security in the context of cyber security protection methodologies are explained. 5.3 Methods for protecting an organisation from cyber-attacks are developed and evaluated 5.4 Introduction to behavior based approach to cyber security is presented 5.5 Incident response standards are defined |
Teaching Schedule
The proposed teaching schedule for the two clustered competencies (VU21989 & VU21990) is detailed below:
Week |
Topics/Discussions |
VU21989 Elements |
VU21990 Elements |
1 |
Topic 1 : Introduction to Cybersecurity Understanding Cyber Security framework for an Organisation |
1.1 – 1.5 |
|
2 |
Topic 2 : Preparing the Lab Environment Need of Cyber Security Virtual Machines Installation on Oracle VM Virtual Box Implementing the Lab Testing Environment Assessment 1 Released Assessment 2 Released |
2.1 – 2.4 |
|
3 |
Topic 2 Continued… Virtual Machines Installation on Oracle VM Virtual Box Implementing the Lab Testing Environment |
3.1 – 3.2 |
2.1 – 2.4 |
4 |
Topic 3 End to End Testing Using Ping and Traceroute |
2.1 – 2.3 |
|
5 |
Topic 4 Application Layer Testing methodologies and tools Current and Emerging Cyber Security Trends |
1.1 – 1.3 |
|
6 |
Topic 5 Cybersecurity Threats, Vulnerabilities, and Attacks Implementing methods to Protect Personal Data and Privacy Implementing methods to Protect Organisation’s data |
4.1 – 4.5 5.1 – 5.5 |
|
7 |
Topic 6 String Analysis for common threats and their Mitigation Threats includes Trojans, Worms, Virus, Denial of Service (DOS) attacks, Distributed Denial of Service (DDoS) attacks, Zero Day Vulnerabilities and Domain Name Service (DNS) attacks |
4.1 – 4.6 |
|
8 |
Topic 6 Continued... String Analysis for common threats and their Mitigation Threats includes Trojans, Worms, Virus, Denial of Service (DOS) attacks, Distributed Denial of Service (DDoS) attacks, Zero Day Vulnerabilities and Domain Name Service (DNS) attacks |
4.1 - 4.6 |
|
9 |
Assessment Review and Revision |
||
10 |
Topic 7 Identifying current and emerging Cyber Security Attacks which includes Learning Ethical Hacking Practices Base Level Troubleshooting Techniques Port Scanning System Hacking and Infiltration Use of Sniffing tools Gathering Usernames via Enumeration Footprinting a system |
5.1 – 5.9 |
3.1 – 3.7 |
11 |
Topic 7 Continued… Identifying current and emerging Cyber Security Attacks which includes Learning Ethical Hacking Practices Base Level Troubleshooting Techniques Port Scanning System Hacking and Infiltration Use of Sniffing tools Gathering Usernames via Enumeration Footprinting a system |
5.1 – 5.9 |
3.1 – 3.7 |
12 |
Topic 8 Identifying Security Vulnerabilities of WLAN |
6.1 – 6.2 |
|
13 |
Topic 9 Use of IOT devices in the business. Understanding risk to IOT devices |
3.8 |
|
14 |
Topic 10 Understanding Basic Scripting for a cyber security environment |
7.1 – 7.4 |
|
15 |
Working on Assessment 1 Project Assessment 1 Project Due |
||
16 |
Assessment 2 Report Due |
||
17 |
Re-submission of Assessments (If applicable) |
||
18 |
Re-submission of Assessments (If applicable) |
Learning Resources
Prescribed Texts
References
Other Resources
None
Overview of Assessment
Assessment 1: Practical Assessment
Assessment 2: Cybersecurity Report
These tasks assesses the following Course Learning Outcomes (CLOs):
Assessment Mapping Matrix
Elements/Performance Criteria |
Assessment 1 |
Assessment 2 |
1.1 |
X |
X |
1.2 |
X |
X |
1.3 |
X |
X |
2.1 |
x |
|
2.2 |
X |
|
2.3 |
X |
|
3.1 |
X |
|
3.2 |
X |
|
4.1 |
X |
X |
4.2 |
X |
X |
4.3 |
X |
X |
4.4 |
X |
X |
4.5 |
X |
X |
4.6 |
X |
X |
5.1 |
X |
X |
5.2 |
X |
X |
5.3 |
X |
X |
5.4 |
X |
X |
5.5 |
X |
X |
5.6 |
X |
X |
5.7 |
X |
X |
5.8 |
X |
X |
5.9 |
X |
X |
6.1 |
X |
X |
6.2 |
X |
X |
7.1 |
X |
X |
7.2 |
X |
X |
7.3 |
X |
X |
7.4 |
X |
X |
Assessment Tasks
The assessment is conducted in both theoretical and practical aspects of the course according to the performance criteria set in the National Training Package. Assessment may incorporate a variety of methods including written/oral activities and demonstration of practical skills to the relevant industry standards. Participants are advised that they are likely to be asked to personally demonstrate their assessment activities to their teacher/assessor. Feedback will be provided throughout the course. To successfully complete this course you will be required to demonstrate competency in each assessment task detailed under Assessment Tasks:
Assessment 1: Practical Assessment
Assessment 2: Cyber Security Report
You must be competent in all elements to successfully complete the course
Assessment Matrix
Assessment Mapping Matrix for VU21989 (COSC6235):
These tasks assess the following Course Learning Outcomes (CLOs):
Elements/Performance Criteria |
Assessment 1 |
Assessment 2 |
1.1 |
X |
X |
1.2 |
X |
X |
1.3 |
X |
X |
2.1 |
x |
|
2.2 |
X |
|
2.3 |
X |
|
3.1 |
X |
|
3.2 |
X |
|
4.1 |
X |
X |
4.2 |
X |
X |
4.3 |
X |
X |
4.4 |
X |
X |
4.5 |
X |
X |
4.6 |
X |
X |
5.1 |
X |
X |
5.2 |
X |
X |
5.3 |
X |
X |
5.4 |
X |
X |
5.5 |
X |
X |
5.6 |
X |
X |
5.7 |
X |
X |
5.8 |
X |
X |
5.9 |
X |
X |
6.1 |
X |
X |
6.2 |
X |
X |
7.1 |
X |
X |
7.2 |
X |
X |
7.3 |
X |
X |
7.4 |
X |
X |
Assessment Mapping Matrix for VU21990 (COSC6236):
These tasks assess the following Course Learning Outcomes (CLOs):
Elements/Performance Criteria |
Assessment 1 |
Assessment 2 |
1.1 |
|
X |
1.2 |
|
X |
1.3 |
|
X |
1.4 |
|
X |
1.5 |
|
X |
2.1 |
|
X |
2.2 |
|
X |
2.3 |
|
X |
2.4 |
|
X |
3.1 |
X |
X |
3.2 |
|
X |
3.3 |
X |
X |
3.4 |
|
X |
3.5 |
|
X |
3.6 |
X |
X |
3.7 |
X |
X |
4.1 |
X |
X |
4.2 |
X |
X |
4.3 |
X |
X |
4.4 |
|
X |
4.5 |
X |
X |
5.1 |
|
X |
5.2 |
|
X |
5.3 |
|
X |
5.4 |
|
X |
5.5 |
|
X |
Other Information
Credit Transfer and/or Recognition of Prior Learning (RPL):
You may be eligible for credit towards courses in your program if you have already met the learning/competency outcomes through previous learning and/or industry experience. To be eligible for credit towards a course, you must demonstrate that you have already completed learning and/or gained industry experience that is:
- Relevant
- Current
- Satisfies the learning/competency outcomes of the course
Please refer to http://www.rmit.edu.au/students/enrolment/credit to find more information about credit transfer and RPL
Study and learning Support:
Study and Learning Centre (SLC) provides free learning and academic development advice to you.
Services offered by SLC to support your numeracy and literacy skills are:
- assignment writing, thesis writing and study skills advice
- maths and science developmental support and advice
- English language development
Please Refer http://www.rmit.edu.au/studyandlearningcentre to find more information about Study and learning Support
Equitable Learning Services (ELS):
If you are suffering from long-term medical condition or disability, you should contact Equitable Learning Services (ELS) to seek advice and support to complete your studies.
Please refer to https://www.rmit.edu.au/students/support-and-facilities/student-support/equitable-learning-services to find more information about services offered by Equitable Learning Services (ELS).
Late submission:
If you require an Extension of Submittable Work (assignments, reports or project work etc.) for 7 calendar days or less (from the original due date) and have valid reasons, you must complete and lodge an Application for Extension of Submittable Work (7 Calendar Days or less) form and lodge it with the Senior Educator/ Program Manager.
The application must be lodged no later than one working day before the official due date. You will be notified within no more than 2 working days of the date of lodgment as to whether the extension has been granted.
If you seek an Extension of Submittable Work for more than 7 calendar days (from the original due date) must lodge an Application for Special Consideration form under the provisions of the Special Consideration Policy, preferably prior to, but no later than 2 working days after the official due date.
Submittable Work (assignments, reports or project work etc.) submitted late without approval of an extension will not be accepted or marked.
Special consideration:
Please Refer http://www.rmit.edu.au/students/specialconsideration to find more information about special consideration
Plagiarism:
Plagiarism is a form of cheating and it is very serious academic offence that may lead to expulsion from the University.
Please Refer: www.rmit.edu.au/academicintegrity to find more information about plagiarism.
Other Information:
All email communications will be sent to your RMIT email address and you must regularly check your RMIT emails.
Course Overview: Access Course Overview