The development of this lab series was supported with funding from the National Science Foundation Award 1829698 “CyberTraining CIP: Cyberinfrastructure Expertise on High-throughput Networks for Big Science Data Transfers” at the University of South Carolina (UofSC). The labs provide hands-on training in the technologies used to build and configure high-speed networks.
The Cybersecurity Fundamentals Training helps provide learners the skills to safeguard digital systems, detect vulnerabilities, and ethically defend against cyber threats. The labs are supported using the Cybersecurity Fundamentals Pod.
| Lab | Title |
|---|---|
| 1 | Reconnaissance: Scanning with NMAP, Vulnerability Assessment with OpenVAS |
| 2 | Remote Access Trojan (RAT) using Reverse TCP Meterpreter |
| 3 | Escalating Privileges and Installing a Backdoor |
| 4 | Collecting Information with Spyware: Screen Captures and Keyloggers |
| 5 | Social Engineering Attack: Credentials Harvesting and Remote Access through Phishing Emails |
| 6 | SQL Injection Attack on a Web Application |
| 7 | Cross-site Scripting (XSS) Attack on a Web Application |
| 8 | Denial of Service (DoS) Attacks: SYN/FIN/RST Flood, Smurf attack, and SlowLoris |
| 9 | Cryptographic Hashing and Symmetric Encryption |
| 10 | Asymmetric Encryption: RSA, Digital Signatures, Diffie-Hellman |
| 11 | Public Key Infrastructure: Certificate Authority, Digital Certificate |
| 12 | Configuring a Stateful Packet Filter using iptables |
| 13 | Online Dictionary Attack against a Login Webpage |
| 14 | Intrusion Detection and Prevention using Suricata |
| 15 | Packet Sniffing and Relay Attack |
| 16 | DNS Cache Poisoning |
| 17 | Man in the Middle Attack using ARP Spoofing |
| 18 | Understanding Buffer Overflow Attacks in a Vulnerable Application |
| 19 | Conducting Offline Password Attacks |
To enable the Cybersecurity Fundamentals labs, install the UofSC - Cybersecurity Fundamentals - v1.0 course using the Course Manager. See the Course Manager section of the NETLAB+ VE Admin Guide for details. The course content will then be available to be added to classes.
