CSC-591 Systems Attacks and Defenses


Date Topic Discussions (do readings before class)
01/09 Introduction (slides, hackpack)  
01/16 Shellcode (slides) x86 Assembly Guide (link)
Emulation-based Detection of Non-self-contained Polymorphic Shellcode (link) [RAID’07]
01/23 Linux Security (slides) Setuid Demystified (link) [USENIX Sec’02]
Address Space Layout Permutation (ASLP) (link) [ACSAC’06]
01/30 Reverse Engineering Automatic Reverse Engineering of Malware Emulators (link) [S&P’09],
Native x86 Decompilation using Semantics-Preserving Structural Analysis and Iterative Control-Flow Structuring (link) [USENIX Sec’13],
Reassembleable Disassembling (link) [USENIX Sec’15]
02/06 Control-flow hijack attacks  
02/13 Stack Canaries & ASLR  
02/20 Return-into-libc & ROP  
02/27 Symbolic Execution & Fuzzing  
03/05 Midterm Exam  
03/12 Spring Break - No class  
03/19 Web Security  
03/26 Web Security  
04/02 Web Security  
04/09 Web Security  
04/16 Final Exam  
04/17 HackPack CTF 1pm-7pm Capture the Flag event at Hunt Library Room 4106
04/23 CTFs & Research