Ethical Hacking

Learn to use advanced methods in ethical hacking with the help of modern penetration testing frameworks in conventional ICT infrastructure and with disruptive technologies.

Level	Master
Location	Session-based
Points	7.5
Start date	09. May
Admission requirements
Form type	Full-time/Part-time
Subject code	3244
Subject description	No description

Ethical hacking within organizations is conducted by authorized professionals, known as ethical hackers or penetration testers, systematically probing information systems to identify and address security vulnerabilities. This technical process requires understanding networking protocols, operating systems, and application architectures. Ethical hackers use specialized tools and methodologies to simulate cyberattacks, aiming to uncover exploitable weaknesses. The process starts with scoping objectives, followed by reconnaissance, vulnerability scanning, and system enumeration. Using tools like Metasploit or Kali Linux, experts assess weaknesses, mimicking real adversaries. Findings are compiled into detailed reports with actionable recommendations. Through ethical hacking, organizations enhance defensive capabilities proactively. This course teaches advanced techniques applicable in modern

organizations utilizing disruptive technologies like Cloud and IoT. In this course, students will learn to demonstrate penetration testing applicability in various organizational scenarios, incorporating knowledge of network architecture, application stack, and data criticality. They will also gain an advanced understanding of network stack analysis across different layers and common network footprints of Linux and Windows services. Moreover, students will be able to formulate penetration testing strategies using standards and frameworks like PTES, MITRE ATT&CK, and OWASP.

Learning outcome

Students will develop skills such as utilizing OSINT tools like Shodan, Censys, and passive DNS services to map a target's attack surface. They will also learn to leverage advanced OS capabilities and analyze information from tools in packages like Kali Linux. Additionally, they will gain proficiency in developing and automating penetration testing routines in Python, bash script, or similar languages. Furthermore, students will be equipped to navigate and execute penetration testing routines in diverse networks, hybrid clouds, SaaS services, and disruptive technologies like IoT and Big Data.

General competencies include reflecting on test results, communicating information concisely to technical and non-technical personnel, and making actionable recommendations. Students will also discuss ways computer architecture can be analyzed from defensive and offensive perspectives and reflect on the need to update organizational policies, technological stacks, and implement additional protection mechanisms.

Subject details

To be qualified for enrolment in the experience-based Master in Cyber Security program, applicants must meet the following requirements:

The candidate must have a Bachelor relevant degree in the fields of software engineering, information security, computer science, information technology, information systems, human computer interaction, or related disciplines with an average grade of minimum examination grade of C, which is equal to minimum 2.7 ECTS.

At least 2 years of relevant professional practical experience related to any of the fields of cyber security is required. The institution assesses what is relevant professional practice and can set requirements for longer professional practice for individual study. In special cases, the institutions can approve other documented qualifications as fully or partially equivalent to the education courses mentioned above.

The candidates must demonstrate programming knowledge (at least 7.5 ECTS of relevant courses with a minimum grade C) or relevant experience in, e.g., Python, Java, C/C++

The candidates must demonstrate fundamental knowledge about cyber security principles (at least 7.5 ECTS of relevant courses) or relevant experience, including understanding of confidentiality, integrity, and availability as well as relevant frameworks such as NIST cyber security framework

For admission to experience-based master's courses and programs at Kristiania University College, the following criteria may be considered as other documented qualifications equivalent to 180 ECTS:

Minimum of 60 ECTSof education at university or college level.

Maximum of 120 ECTS can be replaced by a minimum of four years of relevant full-time employment.

Experience/practice must be documented with certificates containing start and end dates, as well as the percentage of the position and a description of the position's tasks. The certificates must be signed by the employer.

Application deadline: April 30th.

Deadline for documenting your qualifications: April 30th.
Exam information: click here.

Duration of exam: 6 weeks.

Exam format: Individual assessment portfolio
You have to buy the textbooks for the course yourself, and you are free to buy the books wherever you want. Here we have gathered some tips on where you can buy new and used textbooks online.
Absolute prerequisites (beyond admission requirements):

None

Recommended prerequisites (beyond admission requirements):

Information technology, cyber security
This course is specially designed for those who wish to combine studies with work. Instruction is conducted through physical gatherings and digital support on the Canvas learning platform.

The pedagogical approach is based on project- and problem-based learning, using real cases connected to theory. The cases can often come from your own workplace, which means that the study will provide an opportunity to explore practice in your own organization. Such an approach also applies to the selection of topics for a possible future master's thesis.
May 13th: kl. 09.00 – 12.00

June 3rd: kl. 09.00 – 15.30

June 17th: kl. 09.00 – 15.30

June 18th: kl. 09.00 – 12.00
This course is paid for by a third party, so you should not enter payment information. If you have gained access to this course improperly, you will be invoiced according to the current rate for individual courses at Kristiania.

This subject is included in

Enkeltemner master fast start og slutt