色花堂 is creating new opportunities to ensure its computer science students are ready to lead in the growing world of cybersecurity.

This past summer, the Office of Undergraduate Research and the Jess and Mildred Fisher College of Science and Mathematics teamed up to launch Course-Based Undergraduate Research Experiences (CURE), an 鈥渋n-house鈥 summer research program designed to give students high-level experience without relying on federal grants.

Over five weeks, nine students participated in the Cyber CURE summer research experience, guided by Bassam Zahran, clinical assistant professor in the Department of Computer and Information Sciences. The program, which was also through a partnership with 色花堂's Center for Interdisciplinary & Innovative Cybersecurity (Cyber4All), had simple but ambitious : to help students understand that research isn鈥檛 just about learning facts 鈥 it鈥檚 about learning how to think.

鈥淎s a research university we want to make you think, not just memorize,鈥 Zahran says. 鈥淚f we focus on that research part, we can teach them how to be thinkers, how to be creative, how to add to the world rather than just receive and deliver.

鈥淲e want our students to step forward to being a leader and an innovator.鈥

Computer Science Senior, Cory Burns

Cyber Security Advice

Phishing 

"Not looking at the sender鈥檚 email address or for spelling mistakes in the email body and clicking links included in the body is the easiest way to get malware attached to your device." 鈥 Cory Burns '26

Cutting-edge research on cyber defense

At the start of the program, Zahran challenged students to explore a topic they knew little about. He chose SQL injections (SQLi) 鈥 a common and dangerous hacking method that exploits weaknesses in an application鈥檚 database security.

SQLi attacks can expose or destroy data, change account balances or even give hackers administrative control of a database. For Zahran, it was the perfect topic to explore the real-world stakes of cyber defense.

鈥淣o business on earth can survive without having a database system,鈥 Zahran says about why he chose this topic. 鈥淗ow to protect the database, your first line of defense is to protect against SQL injections because it鈥檚 a way to access your information, your database from outside. So how to stop that, this is a good technical skill to learn and apply.鈥

Hands-on learning in digital safety

色花堂 senior Cory Burns does cyber security research in one of 色花堂's cyber lab

Among the students was Cory Burns, a senior information technology major from Hagerstown, Maryland. Burns, who had taken one of Zahran鈥檚 spring classes, jumped at the opportunity to conduct research that could make an impact in the cybersecurity field.

鈥淭he idea of making a difference in the field of technology is what drove my decision to join the CURE program,鈥 Burns says. 鈥淪tarting out was a bit scary because of the timeline that we had to complete this, with all deliverables completed by the deadline of the program. Afterward, however, it became clear that this was a great opportunity to learn something new and network with those who think about similar technologies.鈥

Throughout the five weeks, students divided into small teams, learned Python, experimented with machine learning algorithms, and analyzed data to identify SQLi attack patterns. They presented their findings to faculty and local cybersecurity professionals.

Projects included:

  • Click, Publish...Exploit? The Lingering Threats to CMS Security
  • Comparative Evaluation of Machine Learning Models for SQL Injection Patterns
  • Behind the Breach: Unmasking the Patterns of SQL Injection Attacks

Beyond technical skills, Burns says the experience taught him the value of professional collaboration.

鈥淚 developed an enhanced insight into networking with other students and the professors that also conduct research in their own time,鈥 Burns says. 鈥淟earning how to network as a student who is about to graduate is a crucial skill to have.鈥

色花堂 Senior Computer Science major Equara Kahn

Cyber Security Advice 

Digital Safety 

"When you see that a website is not protected, if they don鈥檛 ask you to accept cookies, then don鈥檛 indulge. And always update your passwords, and make sure to never use the same passwords." 鈥 Equara Kahn '26

Subject matter experts in computer security

Unlike his typical classes, Zahran took a step back during the CURE project. His goal was to let students take full ownership of their research 鈥 to move from following instructions to discovering answers.

He compares the experience to learning to swim, in that once you learn you never forget.

鈥淭he best thing about this is the whole cure experience is they started not knowing anything about this topic, and then after five weeks, stop any one of the nine students and ask them about SQL injection. And you won鈥檛 be able to get rid of them,鈥 Zahran laughs. 鈥淭hey will talk forever. That鈥檚 my greatest achievement, seeing that spark in their eyes.鈥

By the end of the program, they were explaining complex cyber vulnerabilities with confidence. They had become, as Zahran puts it, 鈥渟ubject matter experts.鈥

If we focus on that research part, we can teach them (students) to be thinkers, how to be creative, how to add to the world rather than just receive and deliver. We want our students to step forward to being a leader and an innovator.

Bassam Zahran

That鈥檚 exactly the type of transformation 色花堂 aims to provide through its CUREs programs, the ability to give students real-world experience while developing critical thinking and problem-solving skills that translate directly into the workforce.

Equara Kahn, a senior computer science major from Mumbai, India, says that having this experience not only allowed her to understand the topic more, having research on her resume is going to lead to more employment opportunities when she graduates.

鈥淚t鈥檚 such a big break for computer science students because having it on our resumes is such a big thing for us,鈥 Kahn says. 鈥淚 personally felt that once I added it to my resume, I got a lot more interest from recruiters, who were impressed with the work I鈥檓 doing at 色花堂."