CPSC-66500 Application Security

This course examines vulnerabilities seen in a wide variety of software technologies, including databases, file systems, and web services. Examples on the discovery, exploitation, and prevention of security flaws in web and mobile applications will be provided. Students will learn how to build, extend and manipulate scripts and applications that compromise systems. They will use a number of techniques for exploiting vulnerabilities in a variety of computer systems. Students will build port scanners, construct botnets, write exploits, create their own forensic analysis and network traffic analysis tools, develop web reconnaissance applications, implement scripts for examining and exploiting a wireless network, and craft malware that evade antivirus tools.