CAP6135: Malware and Software Vulnerability Analysis Cliff Zou Spring 2009.

Slides:



Advertisements
Similar presentations
Computer and Data Communications Semester Mohd Nazri Mahmud.
Advertisements

Introduction 1-1 CS6204 Recent Advances in Computer Security and Privacy 3-credit graduate-level seminar Danfeng (Daphne) Yao Spring 2010 Office hours:
Welcome to EECS 354 Network Penetration and Security.
Welcome to CS 450 Internet Security: A Measurement-based Approach.
電腦攻擊與防禦 The Attack and Defense of Computers CEA036許富皓.
COMS W1004 Introduction to Computer Science May 27, 2009.
Welcome to EECS 340 Introduction to Computer Networking.
CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.
ECS15: Introduction to Computers Fall 2013 Patrice Koehl
Math 125 Statistics. About me  Nedjla Ougouag, PhD  Office: Room 702H  Ph: (312)   Homepage:
CAP6135: Malware and Software Vulnerability Analysis Cliff Zou Spring 2015.
CS 458 Internet Engineering Instructor: Prof. Jörg Liebeherr University of Virginia.
1 CDA6938 Special Topic: Research in Computer and Network Security (spring’07) Class Overview.
CST 229 Introduction to Grammars Dr. Sherry Yang Room 213 (503)
Network Security by Behzad Akbari Spring 2012 In the Name of the Most High.
Term Project Description CAP6135 Spring Term Project Two students form a group to do term project together – A research oriented term project.
Spring 2011 ICS321 Data Storage & Retrieval Mon & Wed 12-1:15 PM Asst. Prof. Lipyeow Lim Information & Computer Science Department University of Hawaii.
Computer Network Management Course
CAP6135: Malware and Software Vulnerability Analysis Cliff Zou Spring 2010.
Engineering Secure Software. Vulnerability of the Day  Each day, we will cover a different type of code-level vulnerability Usually a demo How to avoid,
Programming In Perl CSCI-2230 Thursday, 2pm-3:50pm Paul Lalli - Instructor.
CS 858 – Hot Topics in Computer and Communications Security Winter 2009 Introduction.
CAP6135: Malware and Software Vulnerability Analysis Cliff Zou Spring 2013.
CIS 3360: Security in Computing Cliff Zou Spring 2012.
1 CAP6133: Advanced Topics in Computer Security and Computer Forensics (spring’08) Class Overview Dr. Cliff Zou.
CAP6135: Malware and Software Vulnerability Analysis Paper Presentation and Summary Cliff Zou Spring 2010.
CDA6530: Performance Models of Computers and Networks Cliff Zou Fall 2013.
Teaching AIS OnlineAIS Educator’s Conference Teaching AIS Online Training Session For AIS Educator’s Conference June 24, 2005.
Term Project Description CAP6135 Spring Term Project Two students form a group to do term project together – A research oriented term project.
CS 494/594 Computer Communication Networks Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Spring.
CMSC 491/691 A Web of Data Administrivia Spring
1 CNT 4704 Analysis of Computer Communication Networks Cliff Zou Department of Electrical Engineering and Computer Science University of Central Florida.
COT 5405: Design and Analysis of Algorithms Cliff Zou Spring 2015.
ICS202 Data Structures King Fahd University of Petroleum & Minerals College of Computer Science & Engineering Information & Computer Science Department.
Fall 2010 ICS321 Data Storage & Retrieval Mon & Wed 12-1:15 PM Asst. Prof. Lipyeow Lim Information & Computer Science Department University of Hawaii at.
Fall 2010 ICS321 Data Storage & Retrieval Mon & Wed 12-1:15 PM Asst. Prof. Lipyeow Lim Information & Computer Science Department University of Hawaii at.
1 CDA 4527 Computer Networking Prof. Cliff Zou School of Computer Science University of Central Florida Fall 2005.
1 CDA 4527 Computer Communication Networking (not “analysis”) Prof. Cliff Zou School of Electrical Engineering and Computer Science University of Central.
CMSC 491/691 A Web of Data Administrivia Spring
Term Project Description CAP6135 Spring Term Project Two students form a group to do term project together – A research oriented term project.
CIT 380: Securing Computer SystemsSlide #1 CIT 380 Securing Computer Systems Threats.
1 CNT 4704 Analysis of Computer Communication Networks Cliff Zou Department of Electrical Engineering and Computer Science University of Central Florida.
Lecture 1 Page 1 CS 236 Online Introduction CS 236 On-Line MS Program Networks and Systems Security Peter Reiher.
CAP6135: Malware and Software Vulnerability Analysis Paper Presentation and Summary Cliff Zou Spring 2013.
CAP6135: Malware and Software Vulnerability Analysis Paper Presentation and Summary Cliff Zou Spring 2015.
Design and Analysis of Algorithms CS st Term Course Syllabus Cairo University Faculty of Computers and Information.
Copyright ©: Nahrstedt, Angrave, Abdelzaher, Caccamo1 University of Illinois at Urbana-Champaign Welcome to CS 241 Systems Programming University of Illinois.
Week-14 (Lecture-1) Malicious software and antivirus: 1. Malware A user can be tricked or forced into downloading malware comes in many forms, Ex. viruses,
1 CNT 3004 Computer Network Concept Cliff Zou School of Electrical Engineering and Computer Science University of Central Florida Summer 2012.
Course Overview 1 MAT 279 Data Communication and the Internet Prof. Shamik Sengupta Office 4210 N
CAP 107 Introduction To Computers. Welcome to CAP 107 Lecturer: Reham Al-Abdul Jabbar
CDA6938/COT4932 Special Topic: Research in Computer and Network Security (spring’06) Class Overview.
CNT 4704 Computer Communication Networking (not “analysis”)
CNT 4704 Computer Communication Networking (not “analysis”)
CNT 4704 Computer Communication Networking (not “analysis”)
CAP6135: Malware and Software Vulnerability Analysis Paper Presentation and Summary Cliff Zou Spring 2012.
Midterm 2 Exam Review Release questions via webcourse “assignment” around 2pm, Wednesday Mar. 28th, due via webcourse at 2pm, next day Submit format: Word.
Engineering Secure Software
CNT 4704 Analysis of Computer Communication Networks
CNT 4704 Analysis of Computer Communication Networks
Introduction to Computer Security II
Course Information Teacher: Cliff Zou Course Webpage:
CNT 3004 Computer Network Concept
CAP6135: Malware and Software Vulnerability Analysis Buffer Overflow II: Defense Techniques Cliff Zou Spring 2009.
Course Information Teacher: Cliff Zou Office: HEC
Welcome to AOSC200: Weather and Climate Discussion
ECS 152B Computer Networks Winter 2010
Administrative Issues
EE323 Computer Networks Song Chong Course Introduction.
Introduction to Internet Worm
Presentation transcript:

CAP6135: Malware and Software Vulnerability Analysis Cliff Zou Spring 2009

2 Course Information  Teacher: Cliff Zou  Office: HEC   Office hour: TuTh 3pm – 5pm  TA: TBD  Course Webpage:   Use WebCourse for homework submissions, and grading feedback  Online lecture video stream:  FEEDS video   Usually video available the next day  UCF Tegrity   Recorded by myself via my Tablet PC  Video available two hours after each lecture

3 Objectives  Learn software vulnerability  Underlying reason for most computer security problems  Buffer overflow: stack, heap, integer  Buffer overflow defense:  stackguard, address randomization …   How to build secure software  Software assessment, testing  E.g., Fuzz testing

4 Objectives  Learn computer malware:  Malware: malicious software  Viruses, worms, botnets  virus/worm, spam, phishing  Spyware, adware  Trojan, rootkits,….  A good resource for reading:   Learn their characteristics  Learn how to detect  Learn how to defend

5 Objective  Learn state-of-art research on malware and software security  Paper reading/presentation for selected milestone papers on related research topics  Lecture session students:  Need to participate in presentation, in-class discussion  Video streaming students:  Need to read paper, write review, and comments on in-class student’s presentation  Your evaluation will feedback to presenter!

6 Course Materials  No required textbook. Reference books:  Building Secure Software: How to Avoid Security Problems the Right Way by John Viega, Gary McGraw  Software Security: Building Security In (Addison-Wesley Software Security Series) (Paperback) Gary McGraw  19 Deadly Sins of Software Security (Security One-off) by Michael Howard, David LeBlanc, John Viega  Hacking: The Art of Exploitation, 2nd Edition by Jon Erickson  Reference courses:  CS161: Computer Security, By Dawn Song from UC, Berkley. CS161: Computer Security  Software Security, by Erik Poll from Radboud University Nijmegen. Software Security  Introduction to Software Security, by Vinod Ganapathy from Rutgers Introduction to Software Security  Wikipiedia: Great resource and tutorial for initial learning Wikipiedia  Other references as we go on:  First time to teach it, learn as it goes on

7 Course Introduction  Coursework face-to-face online streaming  In-class presentation 20% N/A  In-class participation 10% N/A  Paper review reports N/A 25%  Homework 15% 20%  Program projects 25% 25%  Final term project 30% 30%  Paper presentation  About half of the course time  The other half is my lecture time  Only face-to-face students participate  Online students:  Write reports on presented papers  Comment on student presentation

8 Course Introduction  Programming projects  Probably will have 2 to 3 programming projects  Example:  stack buffer overflow, software fuzz testing, Internet worm propagation simulation  Term project is a research like project  Two students as a group  Or yourself if you cannot find a partner if you are an online student  Find topics by yourself  Must related to malware and software security  In-class short presentation of your project proposal  Will have term project in-class presentation in final exam period

9  Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.