Generating randomised virtualised scenarios for ethical hacking and computer security education: SecGen implementation and deployment

Schreuders, ZC and Ardern, L (2015) Generating randomised virtualised scenarios for ethical hacking and computer security education: SecGen implementation and deployment. In: The first UK Workshop on Cybersecurity Training & Education (Vibrant Workshop 2015), 11 June 2015, Liverpool.

Abstract

Computer security students benefit from having hands-on experience with hacking tools and with access to vulnerable systems that they can attack and defend. However, vulnerable VMs are static; once they have been exploited by a student there is no repeatable challenge as the vulnerable boxes never change. A new novel solution, SecGen, has been created and deployed. SecGen solves the issue by creating vulnerable machines with randomised vulnerabilities and services, with constraints that ensure each scenario is catered to specific skills or concepts. SecGen was successfully deployed to generate VMs for a second year undergraduate team module. Future plans are discussed.

Status:	Published
Refereed:	Yes
Uncontrolled Keywords:	exploitation; virtualisation; vulnerabilities; learning environment; computer security; ethical hacking
Date Deposited:	19 Jun 2015 08:18
Last Modified:	11 Jul 2024 06:29
Event Title:	The first UK Workshop on Cybersecurity Training & Education (Vibrant Workshop 2015)
Event Dates:	11 June 2015
Item Type:	Conference or Workshop Item (Paper)

Download

Preview

Published Version
| Preview

CORE (COnnecting REpositories)

Generating randomised virtualised scenarios for ethical hacking and computer security education: SecGen implementation and deployment

Abstract

More Information

Download

Export Citation

Share

Explore Further

Statistics

Review