Academics
  /  
Courses
  /  
Descriptions
COMP_SCI 396: Advanced Offense and Defense in Cybersecurity


VIEW ALL COURSE TIMES AND SESSIONS

Prerequisites

COMP_SCI 213 & COMP_SCI 350 or instructor approval. • Highly recommended: COMP_SCI 343

Description

This course introduces students to the advanced techniques commonly used in cyber-attacks and defenses.

Topics cover:

  • Exploitation techniques
  • Stack overflow (ROP, JOP, Return-to-libc…)
  • Heap exploitation (off-by-one, unlink, UAF …)
  • Integer overflow
  • Linux kernel exploitation
  • Defense techniques
  • Address Randomization
  • Canary
  • Control flow integrity
  • Kernel defense (SMEP, SMAP …)
Students with good performance in the class will be offered the opportunity to play Capture-The-Flag (CTF) with a world-class team. This course can help satisfy the project course requirement for undergraduates and satisfy the breadth requirement in computer systems for system Ph.D. students.

  • This course fulfills Technical Elective area.

REFERENCE TEXTBOOKS: None
REQUIRED TEXTBOOK: None

COURSE COORDINATORS: Xinyu Xing

COURSE INSTRUCTOR: Xinyu Xing

COURSE GOALS:

  • Understand the advanced offensive and defensive techniques in cybersecurity
  • Obtain hands-on skillsets in performing red-team and blue-team operations

GRADING:
Participation 10%
Homework 50%
Mid-term Exam 20%
Final Exam 20%