CSCI 1650

Overview

CSCI 1650 covers software exploitation techniques and state-of-the-practice mechanisms for hardening software. The course begins with a summary of prevalent software defects, typically found in applications written in memory unsafe languages, like C/C++, and proceeds with studying traditional and modern exploitation techniques, ranging from classical code injection and code reuse up to the latest goodies (e.g., JIT-ROP). It also covers defenses against certain vulnerability classes and the way(s) to bypass them. Students will be introduced to advanced software exploitation techniques and countermeasures, and study (in depth) the boundaries and effectiveness of standard hardening mechanisms, such as address space randomization and stack and heap protections.

syllabus.pdf

Prerequisites

CSCI 1670 (Operating Systems) ||
CSCI 0330 (Introduction to Computer Systems) ||
CSCI 0300 (Fundamentals of Computer Systems)

Grading

10%	`Participation` (Ed Discussion)
90%	`Assignments` (CTF-like write-ups)
0%	`Midterm`
0%	`Final`

Acknowledgments

This course would not be possible without the support and assistance of the following people:

Fall '21: Zachary Espiritu (HTA), Andrew Boden (TA), Andrew Cooke (TA), Maura Driscoll (TA), Ben Givertz (TA), Brandon Lee (TA), Zachary Mothner (TA), Ian Rackow (TA), Daniel Ramirez (TA), Alex Reuter (TA), Marina Triebenbacher (TA)
Fall '20: Brian Tracy (HTA), Zsozso Biegl (TA), Ethan Greenberg (TA), Peter Harvie (TA), Garret Kern (TA), Cat Nguyen (TA), Yue Sun (TA)
Fall '19: Alexander Gaidis (HTA), Di Jin (GTA), Hannah Baackmaan-Friedlaender (TA), Changmin Teng (TA), David Liu (TA), Mneera Abdullah (TA)
Fall '18: Bessie Jiang (HTA), Elisa Guerrant (TA), Yujun Qin (TA)
Fall '17: Frederick Rice (HTA)
Fall '16: Luke Camery (TA)

Meetings

MW 3PM – 4:20PM (T hour)
MacMillan 117 (Zoom)

Instructor

`Vasileios (Vasilis) Kemerlis`

https://cs.brown.edu/~vpk
echo @cs.brown.edu|sed 's/^/vpk/'
Zoom (Mon. 6PM – 7PM)

Teaching Assistants

`Oren Kohavi (HTA)`

echo @cs.brown.edu|sed 's/^/okohavi/'
Zoom (Wed. 10AM – 12PM)

`Floria Tsui (TA)`

echo @cs.brown.edu|sed 's/^/ftsui/'
Zoom (Tue. 4PM – 6PM)

`Guangfeng Xu (TA)`

echo @cs.brown.edu|sed 's/^/gxu16/'
Zoom (Sat. 2PM – 4PM)

`John Fay (TA)`

echo @cs.brown.edu|sed 's/^/jfay1/'
CIT 348 + Zoom (Thu. 6PM – 8PM)

`Kaki Su (TA)`

echo @cs.brown.edu|sed 's/^/jsu15/'
CIT 348 + Zoom (Wed. 6PM – 8PM)

`Linus Sun (TA)`

echo @cs.brown.edu|sed 's/^/lsun23/'
Zoom (Mon. 6PM – 8PM)

`Vanessa Chang (TA)`

echo v^chang5@cs.brown.edu|tr -d ^
Zoom (Fri. 2PM – 4PM)

Communication

Announcements

11/30/2022	Review Day!
11/28/2022	Assignment `0x4` is due today.
11/28/2022	Lecture `0x16` posted.
11/21/2022	Lecture `0x15` posted.
11/16/2022	Assignment `0x4` is due on 11/28/2022.
11/16/2022	Lecture `0x14` posted.
11/14/2022	Lecture `0x13` posted.
11/09/2022	Assignment `0x4` posted.
11/09/2022	Assignment `0x3` is due today.
11/09/2022	Lecture `0x12` posted.
11/07/2022	Lecture `0x11` posted.
11/02/2022	Assignment `0x3` is due on 11/09/2022.
11/02/2022	Lecture `0x10` posted.
10/31/2022	Lecture `0xf` posted.
10/26/2022	Assignment `0x3` posted.
10/26/2022	Assignment `0x2` is due today.
10/26/2022	Lecture `0xe` posted.
10/24/2022	Lecture `0xd` posted.
10/19/2022	Assignment `0x2` is due on 10/26/2022.
10/19/2022	Lecture `0xc` posted.
10/17/2022	Lecture `0xb` posted.
10/12/2022	Assignment `0x2` posted.
10/12/2022	Assignment `0x1` is due today.
10/12/2022	Lecture `0xa` posted.
10/10/2022	No class today.
10/05/2022	Assignment `0x1` is due on 10/12/2022.
10/05/2022	Lecture `0x9` posted.
10/03/2022	Lecture `0x8` posted.
09/28/2022	Assignment `0x1` posted.
09/28/2022	Lecture `0x7` posted.
09/26/2022	Lecture `0x6` posted.
09/21/2022	Lecture `0x5` posted.
09/19/2022	Lecture `0x4` posted.
09/14/2022	Lecture `0x3` posted.
09/12/2022	Lecture `0x2` posted.
09/07/2022	Lecture `0x1` posted.
09/07/2022	Welcome to CSCI 1650!