20653 - SOCIAL ENGINEERING
Course taught in English
Go to class group/s: 25
Class 25: STEFANO ZANERO
Social engineering attacks, non-technical and based on fraud and misrepresentation, are one of the main security threats. In this course we will review the basic definition of social engineering, examine examples of attacks and basic techniques employed in them, and review existing organizational and technical countermeasures.
After successful completion of this course students will understand:
- The threat posed by social engineering attacks
- The most common attack methodologies
- Tools and techniques for information gathering
After successful completion of this course students will be able to:
- Assess the potential risks from social engineering attacks for organizations
- Demonstrate simple social engineering attacks
- Use information gathering tools
- Face-to-face lectures
- Guest speaker's talks (in class or in distance)
- Exercises (exercises, database, software etc.)
- Case studies /Incidents (traditional, online)
- Interactive class activities (role playing, business game, simulation, online forum, instant polls)
The learning experience of this course includes, in addition to face-to-face lectures, thought experiments, case discussions, real examples and interactions with guest speakers from different organizations.
During the course, discussions and role playing will take place in class.
|Continuous assessment||Partial exams||General exam|
- Interactions in class / roleplay / debate (30% of the final grade) designed to verify the student ability to discuss topics related to the course and to test social engineering scenarios.
- Final written exam (70% of the final grade), which aims to assess the student’s learning level of theoretical knowledge and the ability to apply it to real scenarios.
Final written exam (100% of the final grade), which aims to assess the student’s learning level of theoretical knowledge and the ability to apply it to real scenarios.
Teaching notes, suggested readings
- Teaching notes, suggested readings
- Textbook: No Tech Hacking: A Guide to Social Engineering, Dumpster Diving, and Shoulder Surfing, Johnny Long