CS 427 Intrusion Detection

Technical knowledge, insight, and hands-on training necessary to analyze network traffic forgings of intrusion. Students will gain hands-on experience to configure and master open-source tools such as tcpdump and Wireshark. Pre-Requisite: CS 341 with a minimum grade of “C” and CS 330 with a minimum grade of “C”.  Only offered in the Fall.

Upon completion of this course student should be able to:

1. students will learn about the underlying theory of networks such as TCP/IP and the most used application protocols, such as DNS and HTTP so that they can intelligently examine network traffic for signs of an intrusion.
2. Students will be familiar with network intrusion signatures.
3. students will get plenty of practice learning to master different open source intrusion detection tools such as Wireshark and Snort.
4. students should get knowledge about techniques and systems of intrusion detection