CAP6135: Malware and Software Vulnerability Analysis
(Spring 2015)

Home                      Schedule notes                        Assignment

Instructor:        Dr. Cliff Zou (HEC-243),  407-823-5015,

Course Time:   TuTh 10:30am-11:45am,  ENG2- 103

Office Hour:    TuTh 9:00am-10:30am

Course Webpage:

Syllabus:  PDF

Video Streaming: We will use the new Mediasite system for video streaming, which is very similar to Tegrity in previous semesters. Recorded videos can be accessed via the “Modules” link in Webcourse. Both face-to-face session (0R01) and online session (0V61) students can access the lecture video. Each class video will be available in late afternoon after each face-to-face lecture. Webcourse will be used for assignment release and submission.

Prerequisite:    Good programming skill (preferring C or C++); knowledge on computer architecture, algorithm, and networking; knowledge of basic usage of Unix machine.

Textbook:    No require textbook. We will use research papers and some contents from the following reference books.


    This course will provide an introduction to several important aspects about malicious codes and software security, including Internet virus/worm/spam, typical software vulnerabilities (e.g., buffer overflow), software fuzz testing, secure programming, vulnerability prevention techniques, etc. In addition, we will provide representative research papers on software security and malware research for students to read, present and discuss in order to learn the frontier of software security research. Students will have a research-format term project to work on a software security related research topic selected by themselves. During the semester, we will have about three programming projects on topics such as buffer-overflow exploit, fuzz testing, network traffic monitoring, etc.


+/- grading system will be used as A, A-, B+, B, etc. The tentative weights are as follows:

        Task Items                       Face-to-face students              Video streaming students
        In-class presentation               18%                                        N/A
        In-class participation                6%                                        N/A
        Paper review reports               N/A                                        24%
        Homework                             10%                                        10%
        Program projects                    36%                                        36%
        Final term project                   30%                                        30%