This course provides in-depth laboratory exercises using commercial-off-the-shelf (COTS) technology. Topics include: eavesdropping, implementing the attacks against ARP, IP, ICMP, TCP, and UDP protocols, exploiting DNS vulnerabilities to launch Pharming attacks, exploiting cross-site scripting vulnerabilities and buffer overflow, implementing a simplified version of IPSec protocol. In addition students will configure network servers, routers, hubs, firewalls and intrusion detection devices to discover the effect each device can have on overall system security.