Show The Graduate Center Menu

Penetration Testing


Professor Xiangdong Li


An in-depth study of the theory and practice of intrusion detection and prevention in cyberspace. Topics include network security, monitoring, auditing, intrusion detection, intrusion prevention, and ethical penetration testing. Emphasis is on methods to identify system vulnerabilities and threats and prevent attacks.

Topic List

  • Advanced TCP/IP protocols

  • Pre-attack phases: reconnaissance, scanning and enumeration

  • Switching and Routing Vulnerabilities

  • TCP/IP Vulnerabilities

  • Web Security

  • Covert Channels and Data Leakage

  • Intrusion Detection and Prevention Systems

  • IPsec VPN

  • Wireless LAN Security

  • Network Security Architecture

  • Security Logging and Auditing

Learning Goals

At the end of this course, students should be able to:

  • Apply the basic principles and mechanism in detecting cybersecurity incidents

  • Assess the main threats and attacks to wired and wireless networks from inside and outside an organization

  • Apply current penetration testing tools, technique, and procedures

  • Apply the main host-based and network-based intrusion detection techniques to build effective intrusion prevention system

  • Assess the strength and weakness of two widely-deployed intrusion detection systems

  • Critically assess the mechanisms for security monitoring, auditing, and logging focusing on the information systems security audit process

  • Apply the measures and techniques used in detecting and countering data leakage and web security incidents

  • Critically assess modern security architectures to include their building blocks


  • 11 assignments: 55%

  • 2 labs: 10%

  • 2 papers: 20%

  • final: 15%