Paper Title
Teaching Network Security Through Penetration Testing Using the Experiential Learning Approach
Abstract
This paper presents specific scenarios, software tool sets and an experimental environment/set-up to enable network security and forensics students to learn and explore penetration testing (pentesting) using the experiential (hands-on) learning approach. These scenarios are presented in the context of a computer network environment based on Microsoft Windows Servers. The experimental environment also contains network devices including network switches and routers. The specific pentesting methodology selected is Penetrating Testing Execution Standard (PTES). Some remediation measures and information security policies are also outlined.
Keywords - Pentesting, Windows servers, hands-on learning