CSC-405 Introduction to Computer Security
Lectures
| Date |
Topic |
Discussions (do readings before class) |
| 01/08 |
Introduction (slides, hackpack) |
|
| 01/15 |
Shellcode (slides) |
x86 Assembly Guide (link) |
| 01/22 |
Linux Security (slides) |
|
| 01/29 |
Reverse Engineering (slides) |
Reverse Engineering Tutorial (link), Radare2 Book (link) |
| 02/05 |
Control-flow hijack attacks (slides) |
Smashing The Stack For Fun And Profit (link) |
| 02/12 |
Stack Canaries & ASLR (slides) |
NOEXEC and StackGuard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks (link) [USENIX Sec’98] |
| 02/19 |
Return-into-libc & ROP (slides) |
Advanced return-into-lib(c) exploits (PaX case study) (link) |
| 02/26 |
NDSS Symposium 2019 - No class |
|
| 03/05 |
Midterm Exam |
|
| 03/12 |
Spring Break - No class |
|
| 03/19 |
Web Security (slides) |
Hypertext Transfer Protocol (link) and Introduction to HTML (link) |
| 03/26 |
Web Security (slides) |
Introduction to asynchronous JavaScript (link) |
| 04/02 |
Web Security (slides, slides) |
SQL injections (link) |
| 04/09 |
Web Security |
Cross-site Scripting (link) |
| 04/12 |
HackPack CTF |
1pm-7pm Capture the Flag event at Hunt Library Room 4106 |
| 04/16 |
Final Exam |
|
| 04/23 |
CTFs & Research |
|
CTF Events for class participation
CTF participation form: link