Teaching

Our group regularly offers the following lectures (in English) at the CompSci faculty of TU Dortmund. All below courses follow a gamification approach and feature thrilling jeopardy-style Capture-the-Flag competitions that allow students to deepen their theoretical knowledge with practical exercises. If you are interested in BSc/MSc thesis topics, go here.

Network Security ("Sicherheit im Netz", MSc-level course, 6 ECTS)

• Security at the Data Link Layer (ARP security, IEEE 802.1X, network segmentation, WiFi security)
• Security at the Network Layer (IP fragmentation/spoofing, VPNs/IPsec, BGP security)
• Security at the Transport Layer (PKI, TLS, TCP-AO,)
• Security at the Application Layer (secure DNS, secure messenging, anonymous communication)
• Security defenses (IDS/IPS, honeypots, telescopes, tarpits)

Software Security ("Softwaresicherheit", MSc-level course, 6 ECTS)

• Recap on x86 Assembly and Basic Exploitation Techniques
• Advanced Exploitation Targets and Techniques (user-after-free, heap spraying, JIT ROP, signal-based ROP, race conditions)
• State-of-the-Art Exploitation Defenses (Control-Flow Integrity, compiler-assisted defenses, shadow stacks, trust domains)
• Program Analysis (program representations, data flow / taint analysis, instrumentation/rewriting, symbolic execution, program slicing)
• Automated Vulnerability Discovery and Exploitation (fuzzing, exploit generation techniques)

Introduction to Cybersecurity ("Sicherheit: Fragen und Loesungsansaetze", BSc-level course, 4 ECTS)

• Security Goals and Threat Models
• Introduction to Cryptography
• Introduction to Network Security
• Introduction to Systems Security
• Introduction to Web Security
• Introduction to Software Security incl. primer on x86 assembly