Bestseller
Bestseller
Cyber Security is the practice of protecting computers, mobile devices, networks, and digital information from cyber threats and unauthorized access. This course provides learners with knowledge of online safety, password security, phishing attacks, malware protection, data privacy, and safe internet practices. Participants will learn how to identify cyber risks, secure personal and professional information, and use digital technologies responsibly. The course aims to develop awareness and practical skills for staying safe in the digital world and protecting valuable data from cyber attacks.
CYBER SECURITY
## Course Overview
**Duration:** 120 Hours
**Mode:** Theory + Practical Labs + Project Work
**Prerequisites:** Basic computer knowledge, networking fundamentals
---
# Module 1: Introduction to Cyber Security (10 Hours)
## Topics
* What is Cyber Security?
* Importance of Information Security
* Cyber Threat Landscape
* Types of Cyber Attacks
* Security Principles (CIA Triad)
* Security Governance and Compliance
## Notes
### Cyber Security
Cyber Security is the practice of protecting systems, networks, applications, and data from cyber threats.
### CIA Triad
* **Confidentiality:** Prevent unauthorized access.
* **Integrity:** Ensure data accuracy.
* **Availability:** Ensure resources remain accessible.
### Common Threats
* Malware
* Phishing
* Ransomware
* Insider Threats
* Denial of Service (DoS)
### Practical Lab
* Identify recent cyber attacks.
* Analyze security incidents.
---
# Module 2: Computer Networks Fundamentals (12 Hours)
## Topics
* Network Basics
* OSI Model
* TCP/IP Model
* IP Addressing
* DNS, DHCP, HTTP, HTTPS
* Routing and Switching
## Notes
### OSI Model
| Layer | Function |
| ----- | ------------ |
| 7 | Application |
| 6 | Presentation |
| 5 | Session |
| 4 | Transport |
| 3 | Network |
| 2 | Data Link |
| 1 | Physical |
### Important Protocols
* HTTP (Port 80)
* HTTPS (Port 443)
* FTP (Port 21)
* SSH (Port 22)
* DNS (Port 53)
### Practical Lab
* Packet capture using Wireshark
* IP and DNS analysis
---
# Module 3: Operating Systems Security (10 Hours)
## Topics
* Windows Security
* Linux Security
* User Management
* File Permissions
* Process Management
* System Hardening
## Notes
### Linux Permissions
| Permission | Value |
| ---------- | ----- |
| Read | 4 |
| Write | 2 |
| Execute | 1 |
Example:
```bash
chmod 755 file.sh
```
### Security Hardening
* Disable unnecessary services
* Strong passwords
* Patch management
* Firewall configuration
### Practical Lab
* Create users in Linux
* Configure permissions
---
# Module 4: Cryptography Fundamentals (10 Hours)
## Topics
* Encryption Basics
* Symmetric Encryption
* Asymmetric Encryption
* Hashing
* Digital Signatures
* PKI and Certificates
## Notes
### Symmetric Encryption
Same key for encryption and decryption.
Examples:
* AES
* DES
### Asymmetric Encryption
Uses public and private keys.
Examples:
* RSA
* ECC
### Hash Functions
One-way mathematical functions.
Examples:
* SHA-256
* SHA-512
### Practical Lab
* Generate hashes
* Create RSA key pairs
---
# Module 5: Ethical Hacking Fundamentals (12 Hours)
## Topics
* Ethical Hacking Process
* Reconnaissance
* Scanning
* Enumeration
* Vulnerability Assessment
* Reporting
## Notes
### Ethical Hacking Phases
1. Reconnaissance
2. Scanning
3. Enumeration
4. Exploitation
5. Post-Exploitation
6. Reporting
### Types of Hackers
* White Hat
* Black Hat
* Gray Hat
### Practical Lab
* Network scanning
* Basic enumeration exercises
---
# Module 6: Web Application Security (12 Hours)
## Topics
* Web Architecture
* OWASP Top 10
* Authentication
* Session Management
* Secure Coding Principles
## Notes
### OWASP Top Risks
* Broken Access Control
* Cryptographic Failures
* Injection
* Insecure Design
* Security Misconfiguration
### SQL Injection
Occurs when user input is improperly handled in database queries.
### Cross-Site Scripting (XSS)
Injection of malicious scripts into web pages.
### Practical Lab
* Identify vulnerabilities in a training environment
* Analyze HTTP requests
---
# Module 7: Network Security (12 Hours)
## Topics
* Firewalls
* IDS/IPS
* VPN
* Wireless Security
* Network Segmentation
* Zero Trust Concept
## Notes
### Firewalls
Control incoming and outgoing traffic based on rules.
### IDS vs IPS
| IDS | IPS |
| --------------- | ---------------- |
| Detects attacks | Prevents attacks |
| Monitoring | Active blocking |
### Wireless Security
* WPA2
* WPA3
* Secure passwords
### Practical Lab
* Configure firewall rules
* Analyze network traffic
---
# Module 8: Security Operations Center (SOC) Fundamentals (10 Hours)
## Topics
* SOC Overview
* SIEM Concepts
* Log Analysis
* Incident Detection
* Threat Intelligence
## Notes
### SIEM
Security Information and Event Management systems collect and analyze security logs.
Examples:
* Splunk
* ELK Stack
* Wazuh
### Incident Lifecycle
1. Detection
2. Analysis
3. Containment
4. Eradication
5. Recovery
6. Lessons Learned
### Practical Lab
* Analyze logs
* Create detection rules
---
# Module 9: Digital Forensics & Incident Response (10 Hours)
## Topics
* Forensics Process
* Evidence Collection
* Chain of Custody
* Malware Investigation
* Incident Response
## Notes
### Digital Evidence
Any information stored or transmitted digitally.
### Chain of Custody
Documentation that tracks evidence handling.
### Incident Response Steps
* Preparation
* Identification
* Containment
* Eradication
* Recovery
### Practical Lab
* Analyze forensic images
* Investigate system logs
---
# Module 10: Cloud Security Fundamentals (8 Hours)
## Topics
* Cloud Computing Basics
* Shared Responsibility Model
* Cloud Security Risks
* IAM Concepts
* Data Protection
## Notes
### Cloud Models
* IaaS
* PaaS
* SaaS
### Security Controls
* MFA
* Encryption
* Logging
* Access Management
### Practical Lab
* Configure IAM users
* Security review of cloud resources
---
# Module 11: Governance, Risk & Compliance (6 Hours)
## Topics
* Risk Management
* Security Policies
* Compliance Standards
* Security Awareness
## Notes
### Common Frameworks
* ISO 27001
* NIST CSF
* CIS Controls
### Risk Formula
Risk = Likelihood \times Impact
### Practical Lab
* Risk assessment exercise
* Policy creation
---
# Module 12: Capstone Project & Assessment (8 Hours)
## Project Options
1. Security Assessment of a Small Network
2. SOC Monitoring Dashboard
3. Vulnerability Assessment Report
4. Security Awareness Campaign
5. Incident Response Simulation
## Deliverables
* Project Report
* Presentation
* Demonstration
* Technical Documentation
Copyright © 2026 DITRP INDIA. All Rights Reserved
