About this course: This course we will explore the foundations of software security. We will consider important software vulnerabilities and attacks that exploit them -- such as buffer overflows, SQL injection, and session hijacking -- and we will consider defenses that prevent or mitigate these attacks, including advanced testing and program analysis techniques. Importantly, we take a "build security in" mentality, considering techniques at each phase of the development cycle that can be used to strengthen the security of software systems. Successful learners in this course typically have completed sophomore/junior-level undergraduate work in a technical field, have some familiarity with programming, ideally in C/C++ and one other "managed" program language (like ML or Java), and have prior exposure to algorithms. Students not familiar with these languages but with others can improve their skills through online web tutorials.

Created by: University of Maryland, College Park

Taught by: Michael Hicks, Professor
Department of Computer Science

Basic Info	Course 2 of 5 in the Cybersecurity Specialization.
Commitment	6 weeks of study, 3-5 hours/week
Language	English, Subtitles: Korean
How To Pass	Pass all graded assignments to complete the course.
User Ratings	4.6 stars Average User Rating 4.6See what learners said

Syllabus

WEEK 1

OVERVIEW

Overview and expectations of the course

3 videos, 4 readings, 1 practice quiz

LOW-LEVEL SECURITY

Low-level security: Attacks and exploits

6 videos, 2 readings

Graded: Week 1 quiz

Graded: VM BOF quiz

WEEK 2

DEFENDING AGAINST LOW-LEVEL EXPLOITS

Defending against low-level exploits

7 videos, 1 reading

Graded: Week 2 quiz

WEEK 3

WEB SECURITY

Web security: Attacks and defenses

10 videos, 2 readings

Graded: BadStore quiz

Graded: Week 3 quiz

WEEK 4

SECURE SOFTWARE DEVELOPMENT

Designing and Building Secure Software

10 videos, 1 reading

Graded: Week 4 quiz

WEEK 5

PROGRAM ANALYSIS

Static Program Analysis

13 videos, 2 readings

Graded: Project 3 quiz

Graded: Week 5 quiz

WEEK 6

PEN TESTING

Penetration and Fuzz Testing

5 videos, 1 reading

Graded: Week 6 quiz

FAQs

How It Works

Coursework

Each course is like an interactive textbook, featuring pre-recorded videos, quizzes and projects.

Help from Your Peers

Connect with thousands of other learners and debate ideas, discuss course material, and get help mastering concepts.

Certificates

Earn official recognition for your work, and share your success with friends, colleagues, and employers.

Creators

University of Maryland, College Park

The University of Maryland is the state's flagship university and one of the nation's preeminent public research universities. A global leader in research, entrepreneurship and innovation, the university is home to more than 37,000 students, 9,000 faculty and staff, and 250 academic programs. Its faculty includes three Nobel laureates, three Pulitzer Prize winners, 47 members of the national academies and scores of Fulbright scholars. The institution has a $1.8 billion operating budget, secures $500 million annually in external research funding and recently completed a $1 billion fundraising campaign.

Pricing

	Audit	Purchase Course
Access to course materials	Available	Available
Access to graded materials	Not available	Available
Receive a final grade	Not available	Available
Earn a shareable Course Certificate	Not available	Available

Ratings and Reviews

Rated 4.6 out of 5 of 356 ratings

I really enjoyed the hands-on C exploit labs. That deserves a six week course on its own. The rest of the material provides a good introduction to tooling and general concepts. I feel like it is two different courses, in a way.

Clearly explained, well structured, good materials to study and references, leaves you with a feeling of complete understanding of the subjects discussed in cyber security, overall great course. Thank you.

I Love you

Really interesting materials, specially the week 5. Lots of information to research and improve.

Share

Software Security

Software Security

Software Security