Vulnerability of the Day is a pedagogically-curated collection of vulnerability demonstrations for undergraduate software engineering students.
That's a lot of fancy talk for a bunch of neat code demos. Our future programmers need to know about the most relevant, code-level vulnerabilities in the wild today. In my experience, undergrads...
- ...need executable examples to play with.
- ...need extraneous details stripped away until the problem simply presents itself.
- ...need convincing that these vulnerabilities are real.
- ...need a daily balance of concrete, code-level material to complement abstract, cross-cutting security principles.
Thus, VotD is a set of brief coding demonstrations that the instructor can use at the beginning of every day of the class. We strive to make each VotD have the following attributes:
- 10 minutes long or less
- Targeted to third-year SE undergrads
- Socially-relevant domains
- Can be run on a Linux console, using
make - Concise without being contrived
- Real-world historical exmaples with source code patches linked
- Exhibiting a wide variety of key security principles
- Projector-friendly settings and formatting
Want to use it? Clone and and check out the catalog!
Want to contribute? Send me a pull request on Github!