Teaching Web-Attacks on a Raspberry Pi Cyber Range
Contributing USMA Research Unit(s)
Cyber Research Center, Electrical Engineering and Computer Science
Proceedings of the 21st Annual SIG Conference on Information Technology Education, SIGITE ’20
Cyber ranges are an important tool for teaching cyber security techniques. However, setting up a cyber range for classroom use can be costly. Prior work on lowering the cost of cyber ranges focuses on open source solutions and virtual machines. Yet, these solutions do not reduce the cost of physical components - namely, the underlying hardware used to build the range. In this paper, we describe a prototype cyber range built out of Raspberry Pis, a type of inexpensive single board computer. To illustrate the functionality of the range, we use Docker and Docker Swarm to deploy a vulnerable web server across four Raspberry Pi nodes and assess it in an undergraduate classroom. Our cyber range costs under $250.00 to build and consumes less than 25 Watts of power. We open-source our materials and provide pre-built Docker images on Docker Hub to enable others to use our work. Our results suggest that cyber ranges built using Raspberry Pi clusters can lower cost and enhance cyber security education.
Sang Keun Oh, Nathaniel Stickney, Daniel Hawthorne, and Suzanne J. Matthews. 2020. Teaching Web-Attacks on a Raspberry Pi Cyber Range. In Proceedings of the 21st Annual Conference on Information Technology Education (SIGITE '20). Association for Computing Machinery, New York, NY, USA, 324–329. DOI:https://doi.org/10.1145/3368308.3415364
Record links to items hosted by external providers may require fee for full-text.