Oracle数据库安全资源-1

 

 

 

Oracle数据库取证
Title: Oracle Forensics DDLDump
Author: David Litchfield, V3RITY LTD
Type: pdf
[Original] 

Title: Oracle Forensics Part 7: Using the Oracle System Change Number in Forensic Examinations
Author: David Litchfield, NGSSoftware
Type: pdf
[Original] 

Title: Cadfile
Author: David Litchfield, NGSSoftware
Type: Tool
[No Mirror] [Original] 

Title: Oracle Forensics
Author: Pete Finnigan, PeteFinnigan.com
Type: Slides / pdf
[No Mirror] [Original] 

Title: Oracle Forensics Part 6: Examining Undo Segments, Flashback and the Oracle Recycle Bin
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics Part 5: Finding Evidence of Data Theft in the Absence of Auditing
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Blackhat 2007: Oracle Forensics
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics Part 4: Live Response
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics Part 3: Isolating Evidence of Attacks Against the Authentication Mechanism
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics Part 2: Locating Dropped Objects
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics Part 1: Dissecting the Redo Logs
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics in a Nutshell
Author: Paul Wright, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Database Forensics using Logminer
Author: Paul Wright, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle Forensics: Collecting Evidence After an Attack
Author: Aaron Newman, Appsecinc
Type: Powerpoint
[Mirror] [Original] 


Oracle数据库攻击
Title: Hacking Aurora in Oracle 11g 
Author: David Litchfield, NGSSoftware
Type: PDF Document
[Mirror] [Original] 

Title: Exploiting PL/SQL Injection With Only CREATE SESSION Privileges in Oracle 11g 
Author: David Litchfield, NGSSoftware
Type: PDF Document
[Mirror] [Original] 

Title: Bypassing DBMS_ASSERT (in certain situations) 
Author: David Litchfield, NGSSoftware
Type: PDF Document
[Mirror] [Original] 

Title: Exploiting PL/SQL Injection Flaws with only CREATE SESSION Privileges 
Author: David Litchfield, NGSSoftware
Type: PDF Document
[Mirror] [Original] 

Title: Lateral SQL Injection: A New Class of Vulnerability in Oracle 
Author: David Litchfield, NGSSoftware
Type: PDF Document
[Mirror] [Original] 

Title: In-memory Backdoors in Oracle 
Author: David Litchfield, NGSSoftware
Type: Powerpoint Presentation
[Mirror] [Original] 

Title: *BETA* Oracle Assessment Kit
Author: David Litchfield, NGSSoftware
Type: Tool [Windows] / Zip
[Mirror] [Original] 

Title: Cursor Injection - A New Method for Exploiting PL/SQL Injection and Potential Defences
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Cursor Snarfing - A New Class of Attack in Oracle
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Oracle PL/SQL Injection (Blackhat Japan)
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Hack Proofing Oracle Application Server
Author: David Litchfield, NGSSoftware
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Hack-proofing Oracle Databases
Author: Aaron Newman, AppSecInc
Type: Whitepaper / pdf
[Mirror] [Original] 

Title: Exploiting and Protecting Oracle
Author: Pete Finnigan, petefinnigan.com
Type: Whitepaper / pdf
[Mirror] [Original]