Key Takeaways
- Cedarville University professor Dr. Keith Shomper created a new OCRI course titled “Arbitrary Code Execution, Exploitation Techniques and Countermeasures.”
- The course teaches students how attackers exploit low‑level code flaws to run unauthorized instructions and how defenders can detect and mitigate those threats.
- Designed for intermediate learners—college cybersecurity/engineering students, IT professionals, and advanced high‑school pupils—it combines virtual‑lab exercises with formal instruction.
- Drawing on Shomper’s four‑decade background in low‑level computing and Cedarville’s NSA‑designated Center of Excellence in Cyber Operations, the curriculum emphasizes rigorous, bottom‑up analysis of software behavior.
- By highlighting real‑world exploit techniques and defensive indicators, the course aims to strengthen workforce readiness and foster a new generation of security practitioners.
- The module will be publicly available through the Ohio Cyber Range Institute’s Cyber Library starting July 2026.
Course Overview and Objectives
The “Arbitrary Code Execution, Exploitation Techniques and Countermeasures” course was developed by Dr. Keith Shomper for the Ohio Cyber Range Institute (OCRI) to fill a gap in practical, low‑level security training. Its primary goal is to enable learners to recognize how attackers manipulate ordinary software to execute arbitrary code—actions the program was never designed to perform. Through a blend of lecture and hands‑on virtual‑lab work, participants study real‑world exploit chains, learn to spot tell‑tale signs of compromise, and practice hardening techniques that prevent such abuses. The curriculum balances offensive insight with defensive rigor, ensuring that students not only understand how attacks work but also how to build resilient systems that resist them.
Target Audience and Delivery Format
Intended for intermediate‑level participants, the course serves college‑age cybersecurity or engineering students, working professionals who safeguard critical infrastructure, and high‑school pupils seeking early exposure to computer‑security concepts. Delivery combines synchronous instruction with an asynchronous virtual laboratory hosted on the OCRI platform, allowing learners to experiment with exploit code in a safe, isolated environment. This hybrid model supports both theoretical comprehension and practical skill‑building, accommodating varied schedules while maintaining a consistent learning experience across geographic locations.
Connection to Cedarville’s Cyber Operations Program
Cedarville University’s cyber operations program, launched in 2016, holds the distinction of being an NSA Center of Excellence in Cyber Operations—a credential that directly informed the design of Shomper’s new course. The program’s emphasis on deep technical foundations, ethical hacking, and defensive strategies aligns with the OCRI’s mission to advance statewide cyber readiness. By leveraging Cedarville’s established curriculum and faculty expertise, the course benefits from a proven pedagogical framework that blends academic rigor with real‑world relevance, ensuring that participants receive training that meets national standards for cyber‑operations education.
Understanding Arbitrary Code Execution
At the heart of the course lies the concept of arbitrary code execution: a scenario where an attacker tricks a legitimate program into running instructions that were never part of its original design. Shomper explains that while software should behave predictably according to its source code, vulnerabilities such as buffer overflows, improper input validation, or insecure memory handling can be hijacked to redirect execution flow. By dissecting actual exploit examples—ranging from classic stack‑based overflows to modern heap‑spraying techniques—students learn how subtle coding oversights become gateways for malware installation, privilege escalation, or data exfiltration.
Importance of Low‑Level Software Analysis
Dan Schaupner, associate director at the OCRI, stresses that software operating close to the hardware layer exerts a profound influence on system stability and security. The course therefore cultivates a habit of meticulous, bottom‑up analysis, urging learners to examine assembly instructions, memory layouts, and processor states to understand how high‑level language constructs manifest at the machine level. This low‑level perspective equips defenders to spot anomalies that higher‑level scanners might miss, such as return‑oriented programming gadgets or covert channel usage, thereby strengthening overall threat detection and response capabilities.
Instructor Background and Pedagogical Approach
Dr. Keith Shomper brings more than forty years of experience in computer science, including two decades of service in the U.S. Air Force, to the classroom. His specialization in low‑level computing—working directly with machine code, registers, and firmware—shapes the course’s emphasis on interpreting program behavior from the ground up. Shomper repeatedly notes that while scrutinizing the deepest layers of a computer can be tedious, mastering those details provides a powerful troubleshooting lens: knowing precisely what the hardware is doing enables one to trace faults, anticipate attack vectors, and craft effective mitigations from the source upward.
Workforce Development and Practical Skills
The “Arbitrary Code Execution” module is slated to become a cornerstone resource within the OCRI’s library for workforce development, continuing education, and early‑career exposure. By teaching both offensive exploit techniques and defensive countermeasures, the course furnishes cyber professionals with a balanced skill set that enhances their ability to design, audit, and secure complex systems. Graduates will be equipped to conduct vulnerability assessments, develop intrusion‑detection signatures, and advise on secure coding practices—competencies that are increasingly vital as organizations confront sophisticated, low‑level threats targeting critical infrastructure.
About Cedarville University
Cedarville University, an evangelical Christian institution located in southwest Ohio, enrolls roughly 7,265 students across undergraduate and graduate residential and online programs spanning the arts, sciences, and professional fields. Recognized as one of Ohio’s largest private universities, it regularly appears among the nation’s top five evangelical schools in the Wall Street Journal’s Best Colleges rankings. The university is noted for its vibrant Christian community, challenging academics, and strong graduation and retention rates. Its cyber operations program, bolstered by the NSA Center of Excellence designation, serves as a springboard for initiatives like the OCRI course, reflecting Cedarville’s commitment to blending faith‑based values with cutting‑edge technical training.
Future Availability and Impact
Scheduled for release in July 2026 through the OCRI’s Cyber Library, the course will be accessible to a broad audience seeking to deepen their expertise in exploit mitigation and defensive security. By addressing a frequently overlooked layer of cybersecurity—tiny coding errors that enable arbitrary code execution—the training aims to shrink the attack surface available to adversaries. As more practitioners gain the ability to analyze and defend at the lowest levels of the computing stack, the overall resilience of Ohio’s—and the nation’s—critical digital infrastructure is expected to improve, fostering a safer cyber environment for businesses, government agencies, and citizens alike.

