Nice course. One remark, it is necessary to review version compatibility of mentioned virtualbox against today OS versions, mainly macOSX.

Thank you for an insightful look at the world of software security. If I were to make a suggestion it would be to include a refresher module about programming in C. I find it odd that the syllabus wouldn't include some basics on C (while assuming the student is fluid with C) and yet, the course had a couple of modules to explain the most basic of web functionalities like server and client paradigm. I think some students of this course have that kind of knowledge mastered, and would have liked a refreshment for C to have an easier time in the earlier weeks.

Some of the videos were a bit slow, but overall a good course.

Great course

Solid course in software security. Really clear explanation of looking under the covers of how buffer overflows work. However, the virtual machines are four years out of date and getting them running for the labs were a major pain.

I wanna thank Dr Michael but in fact the course wants some editing. First you should write the prerequisite courses for it also a link for each one would be generous. Second we should have more practical exercise done by the instructors live to explain more.. Thank you

it had no practice like using the tools

Being a B.tech year 3 Student some concepts are a little difficult to understand but overall a pretty good course

The way the course instructor taught the course was very boring.

Interesting from a developer point of view in order to improve security concern but the course is too much focused in C language and do not talk about how to improve security in other languages.

I miss some exercises about pentesting

Some more real time examples with Testing activities would have made this course more suitable foe Software Testing Professionals

May be we need to more videos with good examples of the topics covered, I mean good examples that go beyond the basics about topics such as buffer overflow and cross site scripting

I liked the lectures - there are informative and give good overview of such a wide area.

My personal complains are about homeworks - specially HW1 which has big disconnect between lectures and the questions it asked; specifically, no lecture covered pointer arithmetics, and it wasnt on slides; no idea why it was skipped; but it made this task challenging, because i didn't know what to ask or what to google; But it's very simple when you see the process 1st time; just simple example or test practice could make it more enjoyable;

Good but kind of basic for my needs.

There should me more topics on secure code review methods

The first three weeks are really interesting. The 4th and 5th are boring: it explains too many arguments in givin just hint to many of them. Many videos are too long and there are too many.

In my opinion they should focus on fewer things and explain them in ore details. Many times the lecture becomes just a list.

The first half of the course was great but 2nd half was a bit disappointing.

assignment level of difficulty is very good but videos doesn't deep dive into concepts. they just brief about concepts.quality of videos can be improved

Please add practicals with existing theory, because these kind of topics, mainly which are related to programming could be understood better by practical rather than theory (via presentation). Although this course content and instructor is really good, but adding more practicals with theory will help us more to understand the concepts.

I was unable to complete this course, because the course required at least two years of programming knowledge prior to enrolling. I was confident that I could learn while taking the course, but I continually failed to pass the quizzes in the second of five courses. It was very confusing and the questions were cryptic

The difficulty level of this course is very inconsistent. The first project (stack smashing) was difficult, at least for me, but I could complete it with the information taught in the lectures. I was unable to complete the second project (Badstore.net), which requires a knowledge of html and SQL that is not taught in the course. The third project (fuzzing and symbolic execution) was a joke: "Type this and tell us what you see." My advice is if you are a novice, take the free course first to see if you can complete it. Then, if you really need the certificate, pay and retake the course.

This course can only be taken who have good knowledge in programming.Although there is a assessment quiz at the start of the course It needs to kept in mind that since this course is part of specialization,most people would take it and not all of them are programmers.This course needs a revamp to suit all sorts of security enthusiasts.

worst course forever

I raise my hat to the instructor for his knowledge and merits.

HOWEVER

The way this course is structured totally SUCKS wind!

The instructor claims that in order to do well in the classy you are not require to write C code but to understand it . Guess what? in order to understand C code you have to have studied it and used it so the argument about "you don't have to write C code to pass the course" is faulty. In fact, I had a heck of the time passing the course and ended up resenting it.

Tests are set to fail students rather then educate and empower them.

One would expect to find lectures and material to provide enough info to pass the tests but it's NOT the case here. Often you will have to research the subject elsewhere as info given though the course is not enough.

This course needs too much C/C++ knowledge and the test are far too code oriented. You have to give textual answers without having enough help for memory calculation.