Due to a planned Moodle maintenance outage that we completed missed, from 23:00 to 23:59 tonight, the deadline for report 2 is being extended to 00:59 on the 25th of April (one extra hour). The planned outage should only last 10 minutes, so this should be mostly precautionary. I would recommend submitting ASAP and getting sleep rather than working for another hour, but that's up to you.
Hi Everyone, hope you’re preparing well for the exam. This announcement is all the information that I think you’ll need for the exam on Saturday.
When:
Saturday, 27th of April, 1pm-4pm Sydney time. If you have an ELS plan, you will be granted extra time in accordance with that plan. I will finalise those and email you a confirmation on Friday.
What:
All information you need regarding scope and a homepage for the exam will be at:
Until the exam starts, this will act as a countdown. The page will update once the exam is live.
The exam will be in three sections. There are 25 marks in each section. Each question is worth the same so if you’re stuck on one, move on to the next. They are not ordered by difficulty.
Part A and B will look very similar to the midterm and will have challenges at roughly the same difficulty.
Fit to Sit:
UNSW has a fit to sit policy which means if you are fit to sit the exam, there will not be a supplementary exam offered and the mark there will stand. You will be required to acknowledge this when opening the exam for the first time. If you are unwell, do not attempt the exam or perform any exploits on the challenges.
Submission:
You will be asked to submit via a text file, similar to the midterm, with the flags that you find for the question and a short dot point style answer of how you constructed the exploit. Include answers to questions if you did not find the flag as these will be worth partial marks. At the end of your exam time, upload the file here:
https://moodle.telt.unsw.edu.au/mod/assign/view.php?id=6707629
Note, the exam submission will stay open well past 4pm due to special considerations. Any uploads made past 4pm without an ELS plan will be considered late and not marked. We do not have the ability to recover past submissions - if you resubmit after 4 it will be late.
Other notes:
Please do not discuss the exam or any of its contents until after 8pm on Saturday to account for any ELS plans and issues that might arise during the day.
If there are any questions, please post them in the megathread on Ed here:
https://edstem.org/au/courses/15456/discussion/1920062
We will also be posting announcements and any notes we find during the exam within the Ed forums and on WebCMS as required.
Good luck!
Kris.
Hi everyone,
Jesse is going to run the help session tomorrow (Monday) at 6pm in the SecLab of K17. There’s no plan for any specifically prepared content so come with questions! We will have some demos and some awesome tutor notes from through the term, but this one of the last chances to ask about any exploits or challenges you might have.
Exam info will be posted in another announcement this week.
Good luck with the study!
Kris.
We forgot to announce this somewhere other than Discord (although it was also in the Week 5 lecture), sorry.
Anything released in Week 4 has a due date of Week 5, Sunday. That's the 17th of March. The late penalty is usually 50% per day. For Week 4 challenges only, there is a late penalty of 0% per day for the first 7 days. You can submit any of the Week 4 challenges up to Sunday the 24th of March at 11:59pm without losing any marks.
That said, please enjoy your flex week, you are welcome to completely ignore this if you want!
Hi all,
Francis is doing the extended lecture tonight and he’ll be covering some content that we can’t have recorded for various purposes. If you want to see the content about payment bypassing and some real world hacking, you’ll need to go to the lecture tonight.
Kris.
Hi all,
I hope you're well prepared and ready to go for the midterm. This is an announcement to remind everyone what was said in the lecture - we're expecting a .txt file for Moodle.
DO NOT UPLOAD A DOCX/PDF/PPT OR OTHER FORMATS
Markdown is fine, but you won't be able to upload as a .md, just rename your file .txt.
The submission link again, is here:
https://moodle.telt.unsw.edu.au/mod/assign/view.php?id=6519045
and the Ed forum for FAQs and Updates:
https://edstem.org/au/courses/15456/discussion/1794506
Good luck!
Kris.
Hey everyone!
The Security Society is going to be hosting a revision session just before tomorrow's midterm. It'll be held by people who have previously done the course, so if you have any questions or confusions, I'd definitely suggest attending.
Time: 3 - 5:30pm
Location: H13 Lawrence Theatre.
https://unsw.zoom.us/j/81066507341?pwd=YlU5Y2VRaUgxTlNwWjl6dUNEWmhNZz09
Regards,
Lachlan.
Hi all,
I hope you're all doing well in the course and writing up your reports.
The midterm exam will be tomorrow during the lecture timeslot from 6pm to 7pm. It's held online and the scope will be defined as q1.midterm.quoccabank.com through to q6.midterm.quoccabank.com. Full details can be found on the course home page here:
https://webcms3.cse.unsw.edu.au/COMP6443/24T1/resources/96961
Those of you with special considerations and ELPs will be emailed today, but you'll be allocated extra time in accordance with your ELP.
Good luck!
Kris.
Hey everyone,
Some of the kind tutors have offered to run an online help session next Friday (8th of March) at 6pm till 8pm. Lachlan will be leading and there will be some others in the chat to answer as many questions as possible.
It'll focus on thought process of solving the challenges (as some students have expressed concern with the time taken/rabbit holes/etc). This will also give you a chance to see how other people go through the hacking process and how they take notes or document their findings.
This will go through some of the challenges you’ll need for the report so if you’re struggling, maybe you’ll find some answers in this session :)
Ask any questions you’d like addressed in the megathread on Ed - https://edstem.org/au/courses/15456/discussion/1769044
The session will go live at 6pm on Zoom here:
<u>
https://unsw.zoom.us/j/89868034161?pwd=ZzBPNEhyZDhSN1hQdlVhUlA2bHozdz09
</u>
Kris.
Hi everyone,
Just a reminder that the solutions you've got through the term will be detailed in the reports as a major assessment. Please don't discuss solutions until after the reports are submitted. In week 7 - once all reports are submitted, your tutors will go through some solutions in the tutes and you may discuss the weeks 1-5 content however you'd like.
Kris.
Hi all,
I've had the same question several times but wanted to put it in writing to clarify. The deadline for week 1 recon challenges is NEXT Sunday, the 25th of Feb. This will go for all challenges - they are due the end of the week after they open - usually 13 days after opening.
You still have a week to get new content and submit flags, but I suggest you move on to the next set of challenges when they open on Tuesday and come back to prior weeks if you finish them. It's better to stay up to date with content than fall behind trying to be a completionist.
Kris.
Hi everyone,
Just a reminder that tonight's extended lecture will be at 6pm in the June Griffith building, room M18. This will cover some content that is assessable for the extended class so you can consider it mandatory to watch. Additionally, some parts of the lecture will be cut out because we don't want them recorded (nothing we cut will be assessable) so if you want the full content for your own knowledge then you'll need to be there :D
Everyone is welcome, no matter the course you're enrolled in.
See you there!
Kris.
If your tutorial is scheduled for anywhere other than CybrLab - K17-G11 then it's possible your tutorial has been moved. Please go to your scheduled room and if there's no one there at your tutorial time, wander up to the seclab in K17 (the big fishbowl on ground floor) and see if your tutor is there. There's almost always someone in the seclab so even if your tute isn't on, come in and say hi and ask questions or start your own study session.
Kris.
Welcome everyone!
It's going to be an amazing term and I'm looking forward to seeing the mischief that you all get up to.
The challenges are live and the first lecture slides are up under Course Work -> Lectures. A reminder - the lectures are recorded but NOT live streamed. You'll find the recordings on Echo, linked through Moodle.
Remember to stay in scope!
Kris.