Application deadline: 07 October 2026
Information for students of USTP: Please do not use this application form, but enrol in this course via the Freifachanmeldung in CIS.
This course provides a practical introduction to the fundamentals of IT security. Participants gain insight into how real-world cyberattacks differ from Hollywood portrayals, explore attacker goals and common attack methods, and learn the typical stages of an attack along the kill chain. On the defense side, the course introduces the layered security concept of defense in depth and explains how prevention, detection, and response work together in effective cyber defense. A short hacking demo and our “PenQuest” game provide hands-on learning experiences from both attacker and defender perspectives.
Details
Course Dates
21 October 2026, 17:10 – 19:35 (CET)
04 November 2026, 17:10 – 18:45 (CET)
Course Content
Basics of IT security:
- Hacking: Hollywood vs. reality
- Attacker goals and motivations
- Means of attack
- Kill chain: Attack stages
- Exemplary threats
- Defense concept: Defense in depth
- Applied cyber defense: Prevention, detection, response
- Hacking demo
- Gamified IT security with PenQuest
Tutors
Robert Luh
Study Programme
Bachelor IT Security
ECTS
1 (check “Recognition of ECTS” section below for more information)
Prerequisites
None
Further information
Recognition of ECTS
Please note that the recognition of the ECTS provided through this activity on your Transcript of Records depends on the decision of the responsible E³UDRES² coordinators or academic authority of your study programme at your home institution. We strongly recommend contacting them before starting an activity that awards ECTS in order to avoid any unexpected difficulties later on.
Depending on their decision, one of the following scenarios may apply:
- Your credits are recognised and can replace another course within your regular study programme.
- Your credits are recognised and can be included in the elective or free-choice space of your study programme (if applicable).
- Your credits are recognised as extra-curricular, meaning they cannot replace another course or be included in the elective or free-choice space of your programme (if applicable).
When contacting the responsible E³UDRES² coordinators at your home institution, please ensure you provide all relevant information about the E³UDRES² activity so they can properly evaluate your request.
Teaching Methods
Video lecture, gamified approach
Learning Outcomes
The students
- understand the foundations of why and how cyber attacks work (L2)
- are familiar through abstracted application with the stages and technical characteristics of cyber attacks and defense (L3)
Assessment
Online test, assignment, game-based
Literature & Materials
–
Please note
Please be aware of the course timezone provided in the course description. Converting the course times to your timezone may be necessary to ensure your availability.

