V3RITY Software - Breach Investigations and database forensics

Events

Home
Products
Services
Training
Research
News
About

Papers on Oracle Forensics
The Oracle Data Block
Investigating PL/SQL Injection
Oracle Forensics Part 7: Using the Oracle System Change Number in Forensic Investigations
Oracle Forensics Part 6: Examining Undo Segments, Flashback and the Oracle Recycle Bin
Oracle Forensics Part 5: Finding Evidence in the Absence of Auditing
Oracle Forensics Part 4: Live Response
Oracle Forensics Part 3: Isolating Evidence of Attacks Against the Authentication Mechanism
Oracle Forensics Part 2: Locating Dropped Objects
Oracle Forensics Part 1: Dissecting the Redo Logs

Papers on Database Security
Security Considerations for SYS_REFCURSOR use in Oracle PL/SQL Applications
The Security Impact of Global Cursors in Oracle PL/SQL
Hacking Aurora in Oracle 11g
Oracle Forensics: How attackers break in
Oracle Forensics: Preventing breakins
Exploiting PL/SQL Injection With Only CREATE SESSION Privileges in Oracle 11g
Understanding Database Security
Exploiting PL/SQL Injection Flaws with only CREATE SESSION Privileges
Bypassing DBMS_ASSERT (in certain situations)
Lateral SQL Injection - A New Class of Vulnerability in Oracle.
Cursor Injection - A New Method for Exploiting PL/SQL Injection and Potential Defences
Cursor Snarfing - A New Class of Attack in Oracle
Oracle PL/SQL Injection (Blackhat Japan)
Threat Profiling Microsoft SQL Server
Hack Proofing Oracle Application Server
Microsoft SQL Server Passwords
Data-mining with SQL Injection and Inference
Database Servers on Windows XP and the Unintended Consequences of Simple File Sharing
Web Application Disassembly with ODBC Error Messages
Hackproofing Lotus Domino Web Server

Papers on Buffer Overflows
An Introduction to Heap overflows on AIX 5.3L
Buffer Underruns, DEP, ASLR and Improving the Exploitation Prevention Mechanisms (XPMs) on the Windows Platform
Defeating the Stack Based Buffer Overflow Prevention Mechanism of Microsoft Windows 2003 Server
Variations in Exploit methods between Linux and Windows
Non-stack Based Exploitation of Buffer Overrun Vulnerabilities on Windows NT/2000/XP
Windows Heap Overflows
Windows 2000 Format String Vulnerabilities
Buffer Overflows on SPARC Architecture
Buffer Overflows for Beginners
Exploiting Windows NT 4.0 Buffer Overruns (A Case Study: RASMAN.EXE)

SANS DFIR Summit EU 2001

2011-09-21
David Litchfield will be presenting on database forensics

Black Hat Briefings

2011-08-02
David Litchfield will be presenting "Hacking and Forensicating Oracle"

CEIC2011

2011-05-17
David Litchfield will be presenting Database Breach Investigations Made Practical

RSA Europe 2010

2010-10-13
David Litchfield will be speaking on Database Forensics

SANS European Digital Forensics and Incident Response Summit

2010-09-09
David Litchfield will be speaking on Database Forensics for the 21st Century

DFRWS

2010-08-01
David Litchfield will be co-hosting a 1/2 day workshop on database forensics

Black Hat Briefings

2010-07-28
David Litchfield will be speaking on a panel 'Optomizing the Security Researcher and CSO Relationship'