Software Exploitation (5cr)

Code

General information

Enrollment: 17.11.2025 - 08.01.2026; Registration for the implementation has begun.

Timing: 12.01.2026 - 30.04.2026; The implementation has not yet started.

Number of ECTS credits allocated: 5 cr

Local portion: 0 cr

Virtual portion: 5 cr

Mode of delivery: Online learning

Unit: School of Technology

Teaching languages: English

Seats: 0 - 35

Degree programmes: Bachelor's Degree Programme in Information and Communications Technology; Bachelor's Degree Programme in Information and Communications Technology

Teachers: Jenna Penttilä

Groups: TTV23S2
Tieto- ja viestintätekniikka (AMK); TTV23S3
Tieto- ja viestintätekniikka (AMK); TTV23S5
Tieto- ja viestintätekniikka (AMK); TTV23SM
Tieto- ja viestintätekniikka (AMK); TIC23S1
Bachelor's Degree Programme in Information and Communications Technology; TTV23S1
Tieto- ja viestintätekniikka (AMK)

Course: TTC6520

Realization has 26 reservations. Total duration of reservations is 52 h 0 min.

Time	Topic	Location
Mon 12.01.2026 time 14:30 - 16:30 (2 h 0 min)	Module Info	P2_D110 Auditorio
Mon 19.01.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Mon 26.01.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Mon 02.02.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 05.02.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 09.02.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 12.02.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 16.02.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 19.02.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 02.03.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 05.03.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 09.03.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 12.03.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 16.03.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 19.03.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 23.03.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 26.03.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 30.03.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 02.04.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Thu 09.04.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 13.04.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 16.04.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 20.04.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 23.04.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online
Mon 27.04.2026 time 14:00 - 16:00 (2 h 0 min)	Software Exploitation TTC6520-3006	Online
Thu 30.04.2026 time 14:00 - 16:00 (2 h 0 min)	Reverse Engineering & Software Exploitation Assist	Online

Changes to reservations may be possible.

Evaluation scale

0-5

Objective

The student knows the most common application vulnerabilities and how they affect new and existing applications. The student is also able to find, exploit and fix common application vulnerabilities. The student is also familiar with safety mechanisms built into modern operating systems to make exploitation more difficult.

Competences
EUR-ACE: Knowledge and understanding
EUR-ACE: Engineering practice

Content

The course will cover most common application vulnerabilities, what causes them, how they are exploited and how to fix or mitigate them. Basic knowledge of C or C++ and data structures and algorithms is required. Knowledge of one scripting language (e.g. Python) is recommended.

Materials

Materials in the e-learning environment and a book: Hacking : the art of exploitation 2nd edition

Teaching methods

- lectures
- independent study
- distance learning
- webinars
- exercises
- learning tasks
- book

Exam schedules

No exam, assessment is based on assignments.

Completion alternatives

The admission procedures are described in the degree rule and the study guide. The teacher of the course will give you more information on possible specific course practices.

Student workload

One credit (1 Cr) corresponds to an average of 27 hours of work.

- lectures 10 h
- reading assignments 15 h
- independent study 60 h
- assignment solving 40 h
- assignment reporting 10 h
Total 135 h

Assessment criteria, satisfactory (1)

Satisfactory (2): The student understands the most basic topics discussed during the course, however, struggles to utilize this knowledge.
Sufficient (1): The student is familiar with the basic topics discussed during the course. He is able to solve problems related to the topics only in the simplest of cases.
Fail 0: The student does not meet the minimum criteria set for the course.

Assessment criteria, good (3)

Very good (4): The student understands the most important topics discussed during the course and is able to utilize this knowledge in the most common cases.
Good (3): The student understands the most important topics discussed during the course and is able to utilize this knowledge in the most basic cases.

Assessment criteria, excellent (5)

Excellent (5): The student understands all topics discussed during the course and is able to use them in an innovative manner even in challenging cases.

Qualifications

Basics in programming, Data structures and algorithms

Further information

Points from the quizzes and from the labs. No exam