Practical Lab – Exploring Emerging Technologies and Future Trends in Cybersecurity

Duration: 2–2.5 Hours
Level: Intermediate to Advanced (Non-programmer friendly) 

Tools Used: VirusTotal, Google Chrome, MITRE ATT&CK Navigator (web), Blockchain  Demo (web), Google Colab (optional), AWS/Azure Console (read-only/demo) 

Lab Objectives 

By the end of this lab, students will: 

• Use AI-powered tools for malware analysis and anomaly detection • Analyze deepfake-based phishing scenarios 
• Explore Zero Trust concepts 
• Understand post-quantum cryptography threats 
• Simulate a tamper-proof blockchain log 
• Discover how cloud providers implement security controls 

Lab Steps 

Section 1: VirusTotal + AI-Powered Threat Analysis (30 min) Goal:
Upload and analyze suspicious files/URLs using AI-based threat detection.

Tasks: 

1. Open https://virustotal.com 
2. Upload a sample file (you can use EICAR test file or a benign .exe/.zip). 3. Observe detection from multiple engines. 
3. Click on “Behavior”, “Relations” and “Community” tabs to explore AI-based  insights. 

Discuss: 

• Which engines detected it? 
• What anomaly or behavior was flagged? 
• How does this assist a SOC analyst?

Section 2: AI for Deepfake Phishing Detection (20 min) Goal:
Understand how attackers use AI and how defenses are built.

Tasks: 

2. Visit https://www.thispersondoesnotexist.com
3. Discuss how AI can generate realistic fake identities.
4. Discuss use in phishing & impersonation. 
5. Optional: View phishing email examples with AI-generated content.
   
   Discuss: 

• Why is this dangerous? 
• How could AI-based anomaly detection block such emails? 

Section 3: Zero Trust Model – Concept Simulation (20 min) Goal:
Understand “Never trust, always verify” 

Tasks: 

1. Create a basic Zero Trust policy table: 

2. Identify gaps in trust from traditional models. 

Discuss: 

• How is this better than perimeter security? 

Section 4: Blockchain for Security (Tamper-Proof Logs) (20 min) Goal:
Visualize blockchain’s role in securing logs and digital identities.

Tasks: 

1. Go to https://andersbrownworth.com/blockchain/block 
2. Modify a block’s data → observe hash change. 
3. Click “Add Block” and observe how tampering breaks the chain.Discuss: 

• How does this model ensure the integrity of logs? 
• Where can this be used in real life? (e.g., identity, audit trails) 

Section 5: Cloud Security Best Practices Demo (30 min) Goal:
Explore basic cloud security controls on AWS/Azure/GCP

Tasks: 

1. Open https://aws.amazon.com/console (or Azure portal)
2. Navigate to: 

• IAM (Identity and Access Management) 
• Security Groups 
• Encryption settings (S3, EBS, etc.) 

3. Note: 

• Role-based access controls 
• Multi-Factor Authentication settings 
• Data-at-rest encryption toggles 

Discuss: 

• What security features were visible? 
• What would a Zero Trust policy look like in cloud?

Section 6: Post-Quantum Cryptography Awareness (20 min)
Goal: Recognize threats to ECC & RSA, explore Kyber & Dilithium basics

Tasks: 

1. Open NIST PQC resource: https://csrc.nist.gov/projects/post-quantum-cryptography
2. Discuss: 

• Why ECC wallets (like Bitcoin) are vulnerable 
• What Kyber and Dilithium protect 

3. Optional (for advanced users): 

• Use a Google Colab notebook to simulate a hybrid TLS handshake with Kyber (can be an instructor-led demo) 

Assessment/Wrap-Up
Have each student submit a Lab Reflection Report including: 

• Key insights from each section
• Screenshots of VirusTotal, blockchain simulation, and cloud IAM panel
• Their understanding of why emerging tech matters in modern cybersecurity