CS 161: Computer Security
Office Hours

Wed. 6-8 p.m. PST | OH Queue

Demonstrations

This repository is a collection of hands on demo's I wrote for UC Berkeley's CS 161 Computer Security course. Check out the full collection on Github.

Buffer Overflow
The OB - Original Bug, Wrecking Havoc Since 1972

SQL Injection
Wash your queries…and hands! Also, xkcd.com/327/

Clickjacking
Get Off My Page! - Harrison Ford in Air Force 2: Cyberwar

Stored XSS
<script>alert('Evil Laughing - Dr. Evil')</script>

CSRF
(In Transformers Theme) CSRF, one click attacks in disguiseee

Command Injection
Like Prof. Plankton's Mind Control Shampoo, but code!


Discussions

These are the companion slides and notes created for each discussion section. You can find worksheets and solutions on the course website.

Topic Slides Notes
x86, GDB, and Security Principles
Software Security
Cryptography I
Cryptography II
Cryptography III
Midterm Review
Web Security I
Web Security II
Web Security III
Network Security I
Network Security II
Network Security III

Walkthroughs

These are recorded walkthroughs of the first three discussions and midterm + final review sessions on cryptography.

Miscellaneous

There's a potpourri of fantastic online resources which explain the theoretical, mathematical, and practical topics in this class to much greater depths. This is a compilation of my personal favorites.

Cryptography
  • Diffie-Hellman Key Exchange
  • MITM Attacks
  • Password Cracking
  • SHA (Secure Hashing Algorithm)
  • Secure Stream Ciphers (HMAC)
Web Security
  • Clickjacking
  • Cross Site Request Forgery
  • Reflected XSS
  • SQL Injection
  • Stored XSS
Software Security
  • Buffer Overflow Exploits
  • Linux Stack Smashing
  • Super Mario 3 Stack Underflow
Network Security
  • DNS Cache Poisoning
  • Morris Worm
  • Mr. Robot
  • Slow Loris Attack
To realize your dreams of being a movie hacker, check this out. 😎