Author Archives: admin

About admin

Living Lab is an experiential learning environment bringing the classroom and business world together in a unique learning experience for information technology students.

Point-Of-Sale Database

The project goal is to troubleshoot a POS (Point Of Sale) Database. There are some problems with queries about returned damaged equipment. The return table is only showing POS data and not return data.  Also, returned items field tickets show up in the database, but are not showing up in field ticket items. This database uses Microsoft SQL Server on backend and Microsoft Access on the front-end.

Project Student: Khurram Khan

Budgeting Website Development

A local organization facilitates the translation of scientific discoveries in the lab into clinical trials and new patient treatments in Indiana and beyond.

The organization has numerous spreadsheets to assist in their budgeting and application of benefits for those involved in the trials, including the doctors, staff, etc.  Previous work done by the Living Lab has created a database (in Oracle) which contains tables and stored procedures, along with a basic website for viewing, editing, and creating data.  The focus of the continued development will be to continue working on the creation and editing of the data via a website, and making it so data can be imported (such as a Fringe Benefit schedule) at any time.

The website application has been updated so that quick entry of data can be entered without the user needing to click update constantly (using AJAX).  Also, the users can now import a file with the correct columns and update certain areas very quickly using an export from other various systems.  Along with these updates, some database structure changes were made to better fit the .NET Entity Framework and additional fields were added for auditing purposes.  Along with these fields, an auditing factory was integrated so that any inserts, updates, or deletions would be tracked.  The user interface was updated so the user does not have to “page” through data one web page at a time, and not get a list of hundreds of records at a time, a search function was integrated, along with other various improvements.  Finally, the application now uses IU CAS authentication to provide security of the website.  Overall, this was a fun, and at times frustrating, project to work on, and I feel confident leaving the project in the hands of the next programmer.  Utilizing the resources I have already worked into the main parts, and expanding on those to the other areas that are in need, along with the documentation I am providing, they should be able to get started quickly and efficiently move through the rest of the requirements for the client.

Project Student: Chad Beckner

Spiceworks-helpdesk ticketing system

Spiceworks Network Monitor keeps an eye on the networks performance in real-time from your desk.  We’re focusing on the help desk ticketing system portion of spiceworks. The local non-for-profit companies that are being monitored by the helpdesk need to have their tickets routed to the responsible coordinator of the company, to be viewed separately. We’re also researching how to set up each company as a remote site, which could possibly be another way to keep them separate.

We decided to create two virtual servers for the local non-profit companies. Windows Server 2008 and spiceworks was installed. After all the issues encountered with logging into spiceworks through the browser, we discovered that a new rule needed to be created for the firewall to allow such access.  The non-profit companies can now access spiceworks by entering the web address in the browser.  A user portal was also created for helpdesk ticket submission, but registration needs to be completed before logging in.

Project Student: Yolanda Winbush

Scientific Institute

A scientific research organization, in collaboration with various universities and other partnerships, wants to aid in translating research and scientific discoveries into practice and clinical trials. This project was previously created in spring by another student. Their mission is to increase translational biomedical research and to improve the health of people, and also gather information from the client, understand their needs and wants, organize their data, and design a database that integrates the data from all entry points and for all uses. We had to design and implement their database so the be able to access their data as the wanted.

Member: Amadou Traore

SalaryCalc Application

This application is intended to calculate an employee’s salary based on their job codes or title. The user is to select their title or job code, and the application will prompt with more options that the application will use to make the necessary calculations for the associates’ salary.

Project Student: Bonani Ndabambi

University Department Website

A university department wants to add a news feature to its existing website. The news section is designed to be dynamic, flexible, and maintainable. It is composed of scrolling photos that will be linked to descriptive internal article pages, or to external pages. It will also have a scrolling video feed that will be linked to the department’s YouTube channel.

This news section will allow faculty members, students, and potential students to access news fields and events regarding the department. In addition, the department would like to update the website home page in order to be more descriptive and informative.

Project Student:  Sekou Dioubate

Openfiler NAS System

The purpose of the Openfiler project was to replace the old existing NAS hardware in the server room with some updated storage spaces. Three desktop PCs were re-purposed with four 160 GB hard-drives each. Openfiler software was installed on all of them and RAID 5 was configure on the hard-drives using the Openfiler web client. The machines were then configured with static IP addresses and placed in the server room.

Project Students: Blake Kindred, Craig Mishler

CITCON

The purpose of CITCON project was to create an environment that students can come into and test their security knowledge against our systems. Our challenges include WEP Cracking, Cryptanalysis, Remote Exploitation Attacks, and Web-App Hacking. This allows students to go through process of discovery, information gathering, risk assessment, exploitation, and exfiltration. Students will get a flag for challenges they complete.

CITCON project can be expanded to include more challenges that are more suitable for high school students or graduate level students. Current implementation supports college students with some background in security.

Project Students: Blake Kindred, Craig Mishler, Nicholas Luedeman, Rushabh Vyas

SNORT – Intrusion Detection System

The SNORT project is a continuation of building up a network security monitoring server to monitor the networks of classrooms located in a basement. There will be 2 phases that need to be accomplished.  The software that would be using to monitor the network would be “SNORT” , an Intrusion Detection Software.

Phase 1: Snort will need to catch the flow of the in and out traffic on one of the VLANs. Snort has already been built, but may need updates to continue on to the next phase. Security Onion was used initially for the Linux system, but new equipment should allow for SNORT to run on a direct Linux system. Possible start over for the build.

Phase 2: Snort will need to connect to an additional VLAN. Additionally have to make sure there is minimum – 0 redundancy and a way to have separate log files for the VLANs. No further information on this phase until checks on the first phase are complete.

Paused work on the snort project. Will need further research before continuing.

Project Team Members: Raffielle Miller, Shawnie Springfield

Mobile Banking Application Security

During the semester project in CIT 420, it was noted that banking apps for iPhone store some sensitive data in plain text.  This semester in Living Lab a similar process is going to be used to see what similar banking applications store on an Android Phone.  The apps will be downloaded from the Google Play store, used for a couple of weeks, then the device will be scanned and scoured through.  The iPhone apps will also be looked at in much greater depth.

Project Student: Chris Nakfoor