192.111 Attacks and Defenses in Computer Security
This course is in all assigned curricula part of the STEOP.
This course is in at least 1 assigned curriculum part of the STEOP.

2023W, UE, 4.0h, 6.0EC


  • Semester hours: 4.0
  • Credits: 6.0
  • Type: UE Exercise
  • Format: Hybrid

Learning outcomes

After successful completion of the course, students are able to use and extend state of the art security tools and actively participate in international IT security competitions, also called Capture The Flag (CTF). In particular, students will acquire the necessary technical skills to tackle modern security challenges and develop the required software.

Subject of course

Security topics:

  • Binary exploitation
  • Reverse engineering
  • Web security
  • Cryptography
  • Network security
  • Forensics
  • Mobile security
  • Fuzzing
  • Security of virtualized environments

Teaching methods

Technical discussions on computer security problems and introduction to state of the art security tools. Participation to on-line international Capture The Flag security contests with WE_0WN_Y0U (https://w0y.at/).

Mode of examination


Additional information

The lecture is held in English.

ECTS Breakdown (6 ECTS = 150 hours):

  • On-line meetings and presentations (20 hours)
  • Individual project work (130 hours)



Course dates

Fri17:00 - 18:0006.10.2023FAV Hörsaal 1 Helmut Veith - INF Kickoff Event
Mon17:00 - 19:0016.10.2023FAV Hörsaal 1 Helmut Veith - INF Project Overview
Mon17:00 - 19:0030.10.2023FAV Hörsaal 1 Helmut Veith - INF Challenge Presentations
Mon17:00 - 19:0027.11.2023FAV Hörsaal 1 Helmut Veith - INF Challenge Presentations
Mon17:00 - 19:0018.12.2023FAV Hörsaal 1 Helmut Veith - INF Challenge Presentations
Sat08:00 - 20:0020.01.2024HS Atrium 2 CTF Competition
Thu17:00 - 19:0001.02.2024FAV Hörsaal 1 Helmut Veith - INF CTF Wrap up

Examination modalities

Participation to on-line international Capture The Flag security contests and a short talk on a challenge taken from a competition. Assessment of a project focused on protecting or attacking computer systems. Projects will be agreed upfront between lecturers and students and will include the development of innovative security challenges, the creation of new tools or contributions to existing open-source projects to extend the original capabilities. Depending on the estimated effort of each project, students will be allowed to work in groups.

Course registration

Begin End Deregistration end
31.08.2023 00:01 15.10.2023 23:59 18.10.2023 23:59

Group Registration

GroupRegistration FromTo
Individual Presentations 1 (30.10.2023)21.10.2023 23:5929.10.2023 23:59
Individual Presentations 3 (27.11.2023)21.10.2023 23:5924.11.2023 23:59
Individual Presentations 4 (18.12.2023)21.10.2023 23:5915.12.2023 23:59
Team 121.10.2023 23:5930.10.2023 23:59
Team 421.10.2023 23:5930.10.2023 23:59
Team 521.10.2023 23:5930.10.2023 23:59
Team 621.10.2023 23:5930.10.2023 23:59
Team 721.10.2023 23:5930.10.2023 23:59
Team 821.10.2023 23:5930.10.2023 23:59
Team 921.10.2023 23:5930.10.2023 23:59


Study CodeObligationSemesterPrecon.Info
033 521 Informatics Mandatory electiveSTEOP
Course requires the completion of the introductory and orientation phase
175 FW Elective Courses - Economics and Computer Science Elective
880 FW Elective Courses - Computer Science Not specified


No lecture notes are available.

Previous knowledge

Background on system and web security. Basic programming and scripting skills (python and unix shell usage are strongly recommended). Good familiarity with the Linux operating system. 

Preceding courses


  • Attendance Required!