Infra Project 2023
ICT Infrastructure project & Monialaprojekti (ICT-infrastruktuurit)

Create your own project with your team.

You'll get the whole 10 cr to build your own project.

Previous projects: evil USB keyboard, AI log analysis, physical access control, encrypted communications with free software, machine vision... What will you build?

Summary


Course name and code:	ICT Infrastructure project pro4tf023-3010 and Monialaprojekti (ICT-infrastruktuurit) pro4tn004-3011
Timing	2023 whole autumn, periods p1 and p2.
Credits	10 cr
Classes	Blended: physical meetings in timetable + working weekly in groups + steering meetings
Max students	30
Language	English (rally English accepted for our meetings)
Remote	No, blended: both online and in Pasila pa2004 and pa5001.
Feedback	Best 4.7 / 5 excellent feedback, worst 3.6 not so great.
Services	Moodle, Jitsi, Zoom
Teachers	Tero Karvinen and Harto Holmström
First class	2023-08-22 w34 Tue 09:00, in Haaga-Helia Pasila pa2004

Presentations are in English. If you're in an all Finnish group, you can use Finnish internally. But this is a great chance to practice real-life rally English.

Only first class is separate, for the rest of the course Finnish and English groups are together.

2023 projects

PhishSticks USB HID attack simulation

PhishSticks can simulate USB HID attacks for penetration testing. When USB device is connected, it drops the payload without any other user action. Sample payloads are keylogger, reverse shell and ransomware simulation. Windows 10 Defender with default settings is bypassed.

PhishSticks video is a good overview of the capabilities. PhishSticks was also presented on my ethical hacking course and in HelSec flash talks.

Remember to keep your pentesting work both legal and ethical. Never connect an unknown USB device to your computer. PhishSticks also provides more advanced mitigations you can implement in your enterprise network.

SmartDisc frishbee throw measurement

SmartDisc, a frisbee throw measurement prototype.

SmartDisc is an ESP32-WROOM microcontroller based device on the frisbee. It uses MPU-6050 3 access gyroscope and accelometer chip for tilt and acceleration measurements, and estimates speed based on acceleration. ESP32 built-in Bluetooth is used for connecting to cell phone. The interface is serial over USB. The work is a functional prototype. The device is not rugged or small yet, and speed estimates are not verified.

I had a change to throw the prototype and see my stats on a cell phone.

SmartQuery AI bot about Haaga-Helia courses

SmartQuery, an AI chatbot for Haaga-Helia courses. Part of Haaga-Helia study guide was crawled and stored to a vector database. An open weight model Llama 2 uses the vector database to answer users questions. This is called retrieval-augmented generation (RAG). User can access a web app to chat with the bot. (A demo was available in December 2023).

Give Feedback, please

Thanks already! It's important for us (Tero & Harto) to get feedback from every single participant.

I will read it all (twice+) and make improvements. Please give your feedback to two channels: comment & mynet.

1) Free form feedback as a comment on this page

Write your comment on this page.

You can write whatever you want. No need to repeat the questions, but they are here to get you started. Put some email into email field so that the form works, use nomail@example.com.invalid if you don't want to put your own.

Did you learn something? Do you now know something you did not know before the course? (Models, frameworks, ideas, tools, project work?)
Did you do something for the first time? (Used some technique or a tool for the first time?)
Is this useful? Are these skills and this knowledge useful in companies or your work?
How did you like the presentations? Interesting subject? Did you like presenting? Commenting presentations?
How did you like Tero's or Harto's guidance and advice?
Feelings: did you enjoy the course? Did you like the atmosphere in the classes?
How could I improve the course? (I can make almost any change here, if it's important)
Would you recommend the course? Have you already recommended it? Who would benefit from the course (a colleague, a fellow student)?

2) Numeric feedback to Haaga-Helia feedback system (MyNet / Peppi)

Feedback in MyNet (Peppi)

Numeric feedback is used, among other things, for comparing Haaga-Helia courses.

1-worst, 5-best

Your active participation in studies
Achieving the learning goals
The study methods supported learning
The study environment supported learning
Benefits to your career

Open, you can copy the same answer you gave earlier

What promoted your learning?
How would you develop the implementation / group of implementations further so that the learning goals could be achieved better?

Your overall assessment of the implementation, 1-worst, 5-best

How likely would you recommend the course to your fellow students? 1-worst, 10-best.

Thank you for your feedback, and thank you for our course!

Optional: Keep up with Linux & security, join Tero's list. (And get invitations to visitors on security)

See you in my future courses!

Timetable

The course consists of

Individual project work every week
Team meetings every week (or more)
Guidance meeting (teacher+group)
Meetings with all groups, listed below

Time	Agenda
2023-08-22 w34 Tue 9-12	Kick-off (introductions, outlining project topics and project plan). pa2004.
2023-08-29 w35 Tue 9-12	Specification of the project topic, starting the project plan. pa2004.
2023-09-05 w36 Tue 9-12	Working on the project plan and finalizing the project plan, voluntary participation. pa2004.
2023-09-12 w37 Tue 9-13:30	Presentations of project plans. pa2004.
2023-12-12 w50 Tue 9-13:30	Final presentations. pa5001.

Reserve these important whole group meetings from your calendar. In addition to these meetings, you'll be working on your project every school week.

You can schedule your group work with your group as you wish (within reason). Group and supervisory meetings have mandatory participation, and they happen at specific times.

What have they built

Like greek to me? Don't worry, since 2017 we have had projects of every level, from "dog ate my homework" to "teachers amazed". I have guided the projects with Harto Holmström, but the real work has been done by the students. You can see their names or nicks in the linked articles. On the final presentations they usually find that they could not have believed in the first day what they would succesfully build.