CppCon 2019 is right around the corner and this year I will be teaching a 2-day post-conference class on software security and writing high-quality, bug-free code.
The course is called: Exploiting Modern C++
Writing secure code is often shrouded in mystery. But writing secure code begins with writing high-quality code. If you write high-quality, bug-free code you are most of the way to having secure code by default. The difference between a garden variety bug and a security vulnerability lies in how close that bug is to an attack surface. In this class we’ll learn how to design, write, review and test code to its highest quality in the context of software security. In the process we’ll learn how to build highly dependable, secure systems.
This is a class that I’m really excited about teaching. It comes from a lifetime of experience and puts together the skills I’ve learned not just in C++ and security but in how to write high-quality code. It also helps developers avoid the common pitfalls that makes their code fail in the field and be exploitable.
On Day One, we’ll take a code base written in Modern C++ and learn how to analyze it’s architecture and code review it for vulnerabilities and bugs. Then we’ll run exploits against it just like a hacker would and generally raise havoc in the code base.
On day 2, we’ll look at testing tools and strategies and close with secure designs and best practices.
You can find the full class abstract here.
The class runs the weekend after CppCon 2019 at the Gaylord Rockies Resort, September 21-22, 2019.
If you want to know how to write high-quality, bug-free code that is dependable and secure, this is the class for you.
See you at CppCon 2019!