University of Minnesota
Development of Secure Software Systems
index.php

Lab activities

The topics of labs in future weeks are subject to adjustment until the instructions are linked here, but the topics are generally indicative of what is coming up.

  • Lab 0: Remote access and collaboration, on your own only
  • Lab 1: Memory safety bugs and GDB
  • Lab 2: More memory safety bugs
  • Lab 3: Memory safety attacks
  • Lab 4: Overflow obstacle course
  • Lab 5: Fuzzing with AFL
  • Lab 6: Unix permissions
  • Lab 7: OS-level attacks
  • Lab 8: SQL injection attacks
  • Lab 9: Cross-site scripting attacks
  • Lab 10: Cryptanalysis of a flawed MAC
  • Lab 11: Format string attack
  • Lab 12: Protocol replay attack
  • Lab 13: Password dictionary attack
  • Lab 14: Cross-site request forgery