Advanced C/C++ Source Code Analysis is designed for organizations that want to educate their staff on how to find exploitable vulnerabilities by manually auditing the source of large and complex programs. This course does not cover introductory buffer overflows on example code; instead students will focus on real world web browser and common library vulnerabilities. The course covers topics such as use-after-free, type confusion and more. The introductory material covers how to identify bad patterns and conceptualize what the process would look like at runtime. This course is unique in that it will not only teach you techniques to find new vulnerabilities but also analyze code for exploitation primitives that can be leveraged for target specific arbitrary code execution.
Advanced C/C++ Source Code Analysis is offered by Chris Rohlf of Leaf SR.
90 Broad St
Cyber Security Awareness Week (CSAW) is the largest student-run cyber security event in the nation, with a research conference that attracts some of the biggest names in the industry, and a career fair with an impressive list of corporate partners. It’s a weekend of competitions, keynote talks and cyber security events, designed to prepare best-performing students with the skills and knowledge to shape the future of the industry.
THREADS is an annual conference that focuses on pragmatic security research and new discoveries in network attack and defense. Held each year during NYU-Poly's Cyber Security Awareness Week (CSAW) in Brooklyn, NY, THREADS is organized by NYU-Poly Hacker in Residence Dan Guido with the help of cyber security students at the university.
THREADS aims to present and discuss cutting edge, peer reviewed, industrial and academic research in computer and network security. THREADS focuses on developments and advances in attack techniques and attacker methodologies. We want to discuss what vulnerabilities exist and how attackers of today and tomorrow exploit those vulnerabilities.