Summerschool Aachen 2005/Schedule

Warning: The schedule is somewhat messed up. It needs to be synced with the 'official' schedule.

Course Schedule

Mon 19.

• • Lecture:
    • Introduction (Maximillian Dornseif) PDF
    • Hardware Security (Maximillian Dornseif) PDF
  • Lab: Get Started, Wargames on the Net, Unscrew things. (Maximillian Dornseif)
    • Coffee Table Talk: Lock Picking (Patrick Hof, Jens Liebchen)

Tue 20.

• • Lecture: Stack and Heap Overflows (Christian Klein) PDF, examples
  • Lab: Stack and heap overflows – the basics, the techniques (Christian Klein, Ilja van Sprundel)
    • Ilja's Challanges
    • Gera's Challanges
    • Smashing The Stack For Fun And Profit
    • Buffer overflows demystified
    • w00w00 on Heap Overflows
  • CoffeeTableTalk: More Heap Overflows (Ilja van Sprundel) PDF
  • Evening: Visit at the CCCCologne (Maximillian Dornseif)

Wed 21.

• • Lecture:
    • Fingerprinting (Maximillian Dornseif) PDF
    • ScaPy (Philippe Bondy) PDF MOV
  • Lab: Play with ScaPy, scanning the net (Philippe Bondy, Maximillian Dornseif)
  • Coffee Table Talk: HeapOverflow Protection (Yves Younan)
  • Tech Report 'till then: (Yves Younan & Daniel Hodson)

Thu 22.

• • Lecture: Formatstring bugs PDF MOV and Race conditions PDF MOV (Ilja van Sprundel)
  • Lab: Find an exploit, write an advisory
  • Coffee Table Talk: The Game of Go (Paul Boehm) MOV

Fri 23.

• • Lecture: Fuzzing (Ilja van Sprundel) PDF MOV
    • Paper Ilja talked about (free on the RWTH campus)
  • Lab: Fuzz whatever you can get your hands on (Ilja van Sprundel)
  • CoffeeTableTalk the scene (Christian Klein)
  • Evening: Visit at the Netzladen
  • Tech Report 'till then: Harald Vogt & NN

Mon 26.

• • Lecture:
    • Forensics / hidden data in documents (Maximillian Dornseif)
    • OracleSecurity (Alexander Konbrust) MOV1 MOV2
  • Lab: Playing with /Oracle (Alexander Konbrust & Christian Klein)
  • Coffe Table Talk: Signature Forging and PIN observation (Marek Kumpost)
  • Evening:

Tue 27.

• • Lecture: Breaking the web (Maximillian Dornseif) PDF MOV, XSS Thesis.
  • Lab: Breaking the Web for real (Maximillian Dornseif) PDF /Exercises
  • Coffee Table Talk: Security, Science and Education (Felix Freiling), Security Visualisation (Florian Mansmann) PDF
  • Evening: CCCAC

Wed 28.

• • Lecture:
    • Malware (Christian Klein)
    • Botnets, Firewall traversal, distributed C&C (Thorsten Holz)
  • CoffeeTableTalk: The Topology of convert Conflict (Shishir Nagaraja)
  • Lab:

Thu 29.

• • Lecture:
    • Attacking Anonymity Systems (Lexi Pimenidis)
    • Sniffing, Spoofing (ThorstenHolz)
  • Lab:
  • Coffee Table Talk: Secure Software (Paul Boehm)
  • Evening: Party (Felix Freiling)

Fri 30.

• • Lecture:
    • Forensics (Maximillian Dornseif)
  • Fix loose ends
  • Wargame (Lexi Pimenidis, Mercy and Ilja van Sprundel)