coursera上的软件安全课程的课后阅读补充

在coursera选修了一门软件安全的课程。下面是教授列出来的阅读：

Week 1

Readings

Required reading

The only required reading this week is the following:

• Common vulnerabilities guide for C programmers. Take note of the unsafe C library functions listed here, and how they are the source of buffer overflow vulnerabilities. This list will be relevant for the project and this week‘s quiz.
• (Reference) Memory layout. Explains a C program‘s memory layout, replicating the discussion in the second lecture.

Supplemental readings

The following readings are optional: They are meant to supplement the material you are getting in the videos. Check them out if you are interested in learning more, or if you just want to see it all explained in a different way.

• (Reference/refresher) PC Assembly Language, by Paul Carter. This free book introduces x86 assembly, and should complement ideas seen in the lectures.
• Smashing the Stack for Fun and Profit - original article on the topic by Aleph One, in 1996
• Exploiting Format String Vulnerabilities - report describing these format string attacks when they were first recognized
• Basic Integer Overflows - discussion of how overflowing integers can be a vector of attack

coursera上的软件安全课程的课后阅读补充

原文：http://www.cnblogs.com/foohack/p/4337084.html