COMPUTER SECURITY AND LABORATORY

Module LABORATORY

1. Knowledge and understanding. Students will get to grips with "frontier" security issues such as non-repudiation, penetration testing and formal analysis.
2. Applying knowledge and understanding. Students will complete their fundamental security knowledge with the practical applications of the tools for penetration testing and formal analysis.
3. Making judgements. Students will become expert players of the "security game", and in particular of the tools to play actively and successfully in a Capture The Flag in the style brought forward by Professor Giovanni Vigna and his team.
4. Communication skills. Students will familiarise with advanced cyber security terms, building their capacity to conjugate penetration testing and formal analysis towards the deployment of secure systems.
5. Learning skills. Students will get the critical attitude and competences to tackle and solve advanced security problems are they arise in various forms.

The Computer Security Lab is designed to provide students with practical skills in vulnerability analysis and the use of advanced cybersecurity tools. The module begins by exploring vulnerability and weakness databases, such as CVE (Common Vulnerabilities and Exposures), NVD (National Vulnerability Database), MSB (Microsoft Security Bulletins), and CWE (Common Weakness Enumeration), which provide information on known vulnerabilities and common weaknesses in computer systems.

Next, the lab introduces the use of the Metasploit Framework, one of the most widely used platforms for penetration testing. Students set up their own virtual testing lab, using and configuring vulnerable virtual machines to learn how to manage the basics of Metasploit, such as executing exploits, payloads, and attacks against these systems. The different types of shells that are used in this context are then explained, with particular focus on Meterpreter, a shell that offers many remote control and post-exploitation capabilities.

The course also covers specific operational modes of Meterpreter, such as the stageless mode, which allows exploits to be executed without intermediate stages, and silent shells, which are used to maintain stealthy access to compromised systems. Meterpreter migration to other processes, a technique that helps avoid detection and maintain control over a system even after the original process has been terminated, is also examined.

Finally, the lab focuses on post-exploitation techniques with Metasploit, covering activities that can be performed after gaining access to a system, such as credential theft, gathering of sensitive data, and privilege escalation.

• Lecture notes offered by the lecturer
  
• William Stallings: Sicurezza delle reti. Applicazioni e standard
• Bruce Schneier: Sicurezza digitale. Miti da sfatare, strategie da adottare

1. Optional mid-term tests, with lab activities aiming to solve real-world problems.
2. Implementation project.
3. Oral examination.

Examinations may take place remotely, if required by the circumstances.

• Mid-term test: exploit a vulnerability using Metasploit, within a testing environment.
• Implementation project: develop a Metasploit module that exploits a known CVE for which there is no public exploit available.
• Oral examination: describe how the Meterpreter migration from one process to another happens, and what are the advantages of executing this operation.