SIT327 - Network Forensics
Unit details
| Year | 2025 unit information |
|---|---|
| Enrolment modes: | Trimester 1: Burwood (Melbourne), Waurn Ponds (Geelong), Online |
| Credit point(s): | 1 |
| EFTSL value: | 0.125 |
| Unit Chair: | Trimester 1: Frank Jiang |
| Prerequisite: | SIT202 |
| Corequisite: | Nil |
| Incompatible with: | Nil |
| Educator-facilitated (scheduled) learning activities - on-campus unit enrolment: | 1 x 3 hour seminar per week. |
| Educator-facilitated (scheduled) learning activities - online unit enrolment: | Online independent and collaborative learning including 1 x 2 hour online seminar per week. |
| Typical study commitment: | Students will on average spend 150 hours over the teaching period undertaking the teaching, learning and assessment activities for this unit. This will include educator guided online learning activities within the unit site. |
Content
This unit teaches the main techniques and tools needed to successfully investigate attacks against modern computer networks, including how to detect the attacks, how to attribute them, and how to mitigate damage and prevent further damage. Skills to be studied include log analysis, IDS configuration, pcap analysis, protocol reverse engineering. Student will work through a variety of simulated and historical forensic incidents in order to hone their skills.
Learning Outcomes
| ULO | These are the Unit Learning Outcomes (ULOs) for this unit. At the completion of this unit, successful students can: | Alignment to Deakin Graduate Learning Outcomes (GLOs) |
|---|---|---|
| ULO1 | Analyse network log recovery in order to detect common attacks, while gaining familiarity with common network forensics tools. | GLO3: Digital literacy |
| ULO2 | Develop experience in configuring intrusion detection systems to discover and prevent common network attacks. | GLO1: Discipline-specific knowledge and capabilities |
| ULO3 | Perform reverse engineering of unknown network communications protocols, using manual analysis and automated tools. | GLO4: Critical thinking |
| ULO4 | Use common network forensics tools to perform analysis of wireless network traffic, in order to detect and prevent common wireless attacks. | GLO1: Discipline-specific knowledge and capabilities |
| ULO5 | Respond to simulated incidents and produce reports on response, attribution, and recommend mitigation. | GLO2: Communication |
Assessment
| Assessment Description | Student output | Grading and weighting (% total mark for unit) | Indicative due week |
|---|---|---|---|
| Learning portfolio | Tasks include the production of a range of artefacts (scripts, packet captures, written reports etc.), along with written critique and reflection. | 100% | Week 11 |
The assessment due weeks provided may change. The Unit Chair will clarify the exact assessment requirements, including the due date, at the start of the teaching period.
Hurdle requirement
To be eligible to obtain a pass in this unit, students must meet certain milestones as part of the portfolio.
Learning resource
There is no prescribed text. Unit materials are provided via the unit site. This includes unit topic readings and references to further information.
The texts and reading list for SIT327 can be found via the University Library.
Note: Select the relevant trimester reading list. Please note that a future teaching period's reading list may not be available until a month prior to the start of that teaching period so you may wish to use the relevant trimester's prior year reading list as a guide only.
Unit Fee Information
Fees and charges vary depending on the type of fee place you hold, your course, your commencement year, the units you choose to study and their study discipline, and your study load.
Tuition fees increase at the beginning of each calendar year and all fees quoted are in Australian dollars ($AUD). Tuition fees do not include textbooks, computer equipment or software, other equipment or costs such as mandatory checks, travel and stationery.
For further information regarding tuition fees, other fees and charges, invoice due dates, withdrawal dates, payment methods visit our Current Students website.