Peer reviewed
Download full textERIC Number: EJ1343203
Record Type: Journal
Publication Date: 2021-Jan
Pages: 13
Abstractor: As Provided
ISBN: N/A
ISSN: EISSN-2472-2707
EISSN: N/A
Gophish: Implementing a Real-World Phishing Exercise to Teach Social Engineering
Luse, Andy; Burkman, Jim
Journal of Cybersecurity Education, Research and Practice, v2020 n2 Article 5 Jan 2021
Social engineering is a large problem in our modern technological world, but while conceptually understood, it is harder to teach compared to traditional pen testing techniques. This research details a class project where students implemented a phishing exercise against real-world targets. Through cooperation with an external corporate partner, students learned the legal, technical, behavioral, analysis, and reporting aspects of social engineering. The outcome provided both usable data for a real-world corporation as well as valuable educational experience for the students.
Descriptors: Computer Security, Information Security, Deception, Student Projects, Experiential Learning, School Business Relationship, Electronic Mail, Computer Science Education, Skill Development, Internet, Students
Kennesaw State University. 1000 Chastain Road, Kennesaw, Georgia 30144. Tel: 470-578-3568; e-mail: cybersec@kennesaw.edu; Web site: https://digitalcommons.kennesaw.edu/jcerp/
Publication Type: Journal Articles; Reports - Research
Education Level: N/A
Audience: N/A
Language: English
Sponsor: N/A
Authoring Institution: N/A
Grant or Contract Numbers: N/A
