Computer Science Undergraduate Research (CSURS)
- Computer Science Undergraduate Research Seminar
- Visit our lab located at 514F in the Center for Robotics and Manufacturing (a.k.a. Robotics Building, CRMS, and RMB).
In Spring 2009 the seminar on Offensive Security meets on Tuesdays, 4:15 PM in 103 RGAN. The topics are:
- First Meeting: February 10, 2009
- Second Meeting: February 17, 2009
- Third Meeting: February 24, 2009
- No Meeting: March 3, 2009
- Fourth Meeting: March 10, 2009
- Spring Break: March 17, 2009
- Fifth Meeting: March 10, 2009
- Meeting: April 21, 2009
A brief overview of expectations and goals. Excerpts on computer crime and an ethics speech. A quick x86 assembly overview, recognizing high-level constructs in assembly (Intro reverse-engineering) A short run-down of the tools we will use: IDAPro, Windbg (or Ollydbg), VMWare, Hex editor, Wireshark, dumpbin. Demonstration of a small authentication program. Bypass technique: patch bytes in the software such that wrong password = right password.
Server application attacks and their prevention. A server application will be presented. The attack that we will discuss is based on locating a vulnerability in the server, and crafting an exploit that leverages that vulnerability to allow remote code execution on the server machine.
In-depth examples related to the previous topics.
TBD
A short series of common programming problems. Specifically usage of strcpy, strncpy, etc and some common pitfalls.
presenter: Devin Cook; title: Web vulnerabilities.