Intro to Information Security, for example, has four hands-on projects:
1. Exploit a buffer overflow in a C program
2. Use Cuckoo to understand a malware attack
3. Implement CBC encryption algorithm and a brute-force algorithm to crack it
4. Demonstrate an XSRF, XSS and SQL injection attack
Remember this is an intro course and there are about 2-3 weeks per project so you won't be an expert but I'd say it makes you aware of some of the basic security attacks and how to prevent them.
Georgia Tech biases heavily towards hands on project design. It was also rated the worst school in terms of work life balance while I was there. Grad level courses will easily suck up a substantial portion of your life, even if the content seems 'simple.'
