Information and Communication Systems Security (ICSS)

ECTS: 6
Course Description:
This course is an introduction to the ethical hacking process, also known as “penetration testing”. The course is highly practical with hands-on labs but it won’t neglect the theory; During the course we will simulate real world attacks on a network, application, or system that has vulnerabilities and weaknesses. The aim of the course is to understand, the attacking process and also the cyber threats in order to effectively protect complex networks and systems, by identifying miss-configurations, weaknesses and vulnerabilities. More specifically this course covers the following topics:
• Introduction to Penetration Test Methodology
• Reconnaissance Techniques
• Scanning Techniques
• Gaining Initial Access Techniques (Exploitation, Brute forcing, Client side attack)
• Maintain access (Trojans, rootkits, back doors)
• AV, EDR bypass Techniques
• Post exploitation Techniques
• Lateral Movement
• Network pivoting
• Covering tracks

Labs: By using hands-on labs and step-by-step technical walkthroughs, we’ll cover the real-world tools and techniques used by today’s penetration testers professionals.

Course Coordinator: Prof. Panayiotis Kotzanikolaou

ECTS: 3
Course Description:
The Digital Forensics course focuses on building incident handling and digital forensics capabilities covering Windows and Linux operating systems. The course covers all the essential information you need to properly detect, response, mitigate and recover from cyber security incidents.
It is a full technical course with hands on labs. The aim of this course is, after understanding the attacking process, to learn how to deal with cyber attacks on windows and linux operating systems. You will learn the Incident Response / handling Process and also the digital forensics process. We will focus on windows, linux and network digital forensics. More specifically this course covers the following topics:
– Incident Handling process
– Windows forensics (memory forensics, registry forensics, file system analysis, application forensics)
– Log file analysis
– Linux forensics
– Network forensics

Labs: By using hands-on labs and step-by-step technical walkthroughs, we’ll cover the real-world tools and techniques used by today’s incident handlers and forensics experts. Labs contains., Information gathering, memory analysis, registry and file system analysis, network forensics and also Linux Forensics.

Course Coordinator: Prof. Kostas Patsakis

ECTS: 3
Course Description:
This course focuses on methods for the analysis of malware (trojans, rootkits, ransomware etc). This involves the analysis of real-world and recent malware in real time and live environments. We study malware collection tools, techniques for static code analysis, as well as dynamic analysis through disassemblers and debuggers

More specifically this course covers the following topics:
• Malware
• C&C servers (protocols and methods)
• Obfuscation
• Static malware analysis
• Dynamic malware analysis
• Machine learning for malware detection

Labs:
The labs will cover practical aspects of malware analysis where students will use VMs to extract features from malware and also interact with them via debuggers and sandboxes to understand how a malware acts and how it can be analysed.

Course Coordinator: Prof. Kostas Patsakis

ECTS: 6
Course Description:
Companies and organizations around the world are today, much more than ever before, recognizing the value of security in software. Furthermore, vendors heavily invest in security processes that will enable them to produce software that will meet high security standards. This course describes the fundamental principles behind software security and explains the value of secure software in dependable ICT infrastructures. It also describes in detail the basic types of software vulnerabilities and shows how these can be rated and managed according to their respective risk.
Through lectures, assignments and workshops students will find out how to identify security bugs both in software for which the source code has been made available (code review) but also in software where source code is not available (black box review). The vulnerabilities studied throughout this course come from a wide area of applications including: operating system software, embedded systems software, Internet services, desktop software, web applications and mobile applications.

Scope of the course: The primary goal of this course is the development of the following skills: the application of security best practices to software under development, the identification of security issues in open source and closed source software, the demonstration of a vulnerability, the rating of a vulnerability and the management of vulnerabilities throughout the design, implementation and maintenance phases of software projects. Students will also be introduced to state-of-the-art methods for the identification of vulnerabilities and recent techniques for the proactive mitigation of risks.

Labs: Various tools for static and dynamic code analysis (like nm, file, objdump, strace, ltrace), debugging tools (gdb), protocol fuzzing (peach), file fuzzing (jonggfuzz) and web app security (bwapp).

Course Coordinator: Prof. Panayiotis Kotzanikolaou

ECTS: 3
Course Description:
This course focuses on introducing the students to the blockchain technology. After introducing the core concepts behind blockchain, we present the various consensus algorithms and the functionality that is provided. After exploring traceability in public blockchains, we shift to smart contract development to develop practical applications in real-world blockchains.
More specifically this course covers the following topics:
• Introduction to blockchain
• Concensus algorithms (Proof of work, Proof of stake, Byzantine fault tolerance)
• Traceability in blockchain (tracing transactions in the blockchain)
• Smart contract development in Ethereum/Hyperledger (will depend on the year)

Labs:
The labs will primarily focus on Smart contract development for widely used blockchains, such as Ethereum and Hyperledger. Moreover, lab exercises to understand and explore the traceability features that blockchains enable will also be made.

Course Coordinator: Prof. Kostas Patsakis

ECTS: 3
Course Description:
Lectures: This course focuses on the study of special aspects related with information security and privacy, with an emphasis on cross-discipline aspects such as economics, education, training, legal and regulatory aspects. The ulitmate goal is to examine cybersecurity from a mixed mixed socio-technical point of view. More specifically this course covers the following topics:
• Economics of Security
• Security in Education
• Security Awareness
• Legal and Regulatory Aspects of Security and Privacy

Course Coordinator: Prof. Christos Douligeris

ECTS: 3

Course Description: The course focuses on the ethical challenges of the operation and use of the network and the ethical issues associated with data science, as well as the legal arrangements of these issues at the national and international level. The ultimate goal of the course is for students to assess and estimate the gravity, complexity, and broad scope of ethical dilemmas in cybersecurity and to prepare them holistically for their future roles as cybersecurity professionals.

In particular, the course covers the following topics:

• Introduction to applied ethics – The ethical framework of cybersecurity

• Society and Cybersecurity (Case Studies)

• Law and Ethics (Privacy, personal data, confidentiality)

• National, european and international cybersecurity legislation

Course Coordinator: Dr V. Christodoulakis