Application deadline: 20 April 2026
This course provides a practical introduction to the fundamentals of IT security. Participants gain insight into how real-world cyberattacks differ from Hollywood portrayals, explore attacker goals and common attack methods, and learn the typical stages of an attack along the kill chain. On the defense side, the course introduces the layered security concept of defense in depth and explains how prevention, detection, and response work together in effective cyber defense. A short hacking demo and our “PenQuest” game provide hands-on learning experiences from both attacker and defender perspectives.
Details
Course Content
Basics of IT security:
- Hacking: Hollywood vs. reality
- Attacker goals and motivations
- Means of attack
- Kill chain: Attack stages
- Exemplary threats
- Defense concept: Defense in depth
- Applied cyber defense: Prevention, detection, response
- Hacking demo
- Gamified IT security with PenQuest
Tutors
Robert Luh
Study Programme
Bachelor IT Security
ECTS
1 (check with institutional E³UDRES² coordinators to see whether ECTS can be recognized)
Contact hours
6
Full/partial course
Partial course
Prerequisites
None
Further information
Teaching Methods
Video lecture, gamified approach
Learning Outcomes
The students
- understand the foundations of why and how cyber attacks work (L2)
- are familiar through abstracted application with the stages and techhnical characteristics of cyber attacks and defense (L3)
Assessment
Online test, points gained in PenQuest
Literature & Materials
Software required (PenQuest) needs USTP account or external email address to register
https://www.pen.quest
Please note
Please be aware of the course timezone provided in the course description. Converting the course times to your timezone may be necessary to ensure your availability.
