Introduction
This module explores software security and the threats and hazards to applications, the types of attacks that can be carried out on software (e.g., memory violations, input validation and privilege escalation), OS vulnerabilities, penetration testing of software systems, malware analysis, static and dynamic analysis of software systems, and reverse engineering of suspicious code.
Course Structure
The course is split into the following weeks:
- Introduction. Software vulnerabilities.
- Low level programming languages (C: functions, stack, pointers)
- Reverse engineering
- Heap and memory errors, buffer overflow, programming assembler
- Application of buffer overflows
- Malware analysis
- Malware and memory analysis
- Static and dynamic analysis
- Risk analysis in terms of STRIDE and LINDDUN (see COMP6204 notes)
- Copyright protection and the SDLC
- Eliciting security requirements and misuse cases
Assessment
There are three pieces of coursework, which are completed in our own time. Lab sessions are in place to help with these and putting theory into practice. Courseworks are split throughout the course. There is no examination.
The three courseworks cover the following aspects:
- Low level vulnerabilities
- Reverse engineering
- Memory forensics