Wednesday, February 4, 2009

IS317 UNIT 8 – Hacking Web Severs

Textbook: Simpson, Michael T. Hands-On Ethical Hacking and Network Defense. Thomson Course Technology, 2006.

Reading:
Textbook –
Chapter 10, pp. 231–264

Assignments:
Review Questions (RQ):
Chapter 10, pp. 265–266

Hard Drives Required for LAB.

Lab(s):
LAB 1:
VISITING THE OWASP WEB SITE
Complete activity 10-5, pp.250 of your textbook.
Based on your review of the top 10 vulnerabilities, do you believe it is possible to secure a Web site? Substantiate your opinion. What are some of the considerations a network security professional must take into account for securing a Web site?

Evaluation Criteria:
1. Did the students explain whether it is possible to secure a Web site?
2. Do the students list the key elements involved in Web server security?

Deliverables and format: Assignment due at the end of class.
Submit your answer in a Microsoft Word document.
Font: Arial; 11
Line Spacing: Double

Case Assignment 1 (CA1)
Title:
Determining Vulnerabilities of Web Servers
Complete the exercise Case 10-1 on page 267 from Chapter 10 of your textbook. To understand the scenario for this exercise, read case 1-1 on page 17 of the textbook.

Deliverables and format:

Submit your answer in a Microsoft Word document.
Font: Arial; 11
Line Spacing: Double

Submit each assignment type as a separate attachment (CA1, LABs, RQ)

IS317 Course Project
Project Introduction: Using commonly available tools examine the Internet Footprint of a company and identify possible vectors a hacker might attempt to compromise.

Project Submission Plan:
Project Part I
Tasks:
1. Using Google and Yahoo, determine all the information about the search engine—Fazzle.com, including details of ownership, board members, and other possible areas of inspection.

Deliverables and format:
Submit your answer in a Word document in not more than 200 words.
Font: Arial; 11
Line Spacing: Double

Assigned and Due Date:
Assigned: Week 8
Due: Week 9
Grading Weight: 5%

Project Part 2
Tasks:
1. Using www.netcraft.com and
www.whois.com, define IP blocks and OS systems for the site Fazzle.com.

Deliverables and format:
Submit your answer in a Word document in not more than 100 words.
Font: Arial; 11
Line Spacing: Double
Assigned and Due Date:
Assigned: Week 9
Due: Week 10
Grading Weight: 10%



Refer to General Course Information for Email and Assignment Instructions.