You are here: Home » Media Room > White Papers
Oracle Forensics Part 7 Using the Oracle System Change Number in Forensic Investigations 24/11/2008 Bypassing Oracle DBMS_ASSERT 23/07/2008 Oracle Forensics Part 6: Examining Undo Segments, Flashback and the Oracle Recycle Bin 16/08/2007 Oracle Forensics Part 5: Finding Evidence of Data Theft in the Absence of Auditing 10/08/2007 Attacking the Windows Kernel (Black Hat Las Vegas 2007) 06/08/2007 Hacking the Extensible Firmware Interface (Black Hat Las Vegas 2007) 06/08/2007 VoIP Security: Methodology and Results (Black Hat Las Vegas 2007) 06/08/2007 DNS Pinning and Web Proxies 10/07/2007 A Simple and Practical Approach to Input Validation 19/06/2007 Oracle Forensics Part 4: Live Response 20/04/2007 Oracle Forensics Part 3: Isolating Evidence of Attacks Against the Authentication Mechanism 27/03/2007 Oracle Forensics Part 2: Locating Dropped Objects 24/03/2007 Oracle Forensics Part 1: Dissecting the Redo Logs 21/03/2007 Inter-Protocol Exploitation 05/03/2007 Advanced Exploitation of Oracle PL/SQL Flaws (Black Hat Washington 2007) 28/02/2007 Firmware Rootkits: The Threat to the Enterprise (Black Hat Washington 2007) 28/02/2007 Exploiting PL/SQL Injection Flaws With Only CREATE SESSION Privileges 21/02/2007 Weak Randomness 06/02/2007 Oracle Passwords and OraBrute 15/01/2007 Dangling Cursor Snarfing - A new class of attack in Oracle 23/11/2006 Microsoft's SQL Server vs. Oracle's RDBMS 21/11/2006 Implementing and Detecting a PCI Rootkit 15/11/2006 Inter-Protocol Communication 13/09/2006 Low Cost Attacks on Smart Cards - The Electromagnetic Side-Channel 12/09/2006 Database Servers on Windows XP and the Unintended Consequences of Simple File Sharing 16/11/2005 Securing PL/SQL Applications with DBMS_ASSERT 08/11/2005 Buffer Underruns ASLR and Improving the Exploitation Prevention Mechanisms (XPMs) on the Windows Platform 30/09/2005 Data-Mining With SQL Injection and Inference 30/09/2005 Writing Small Shellcode 19/09/2005 An Introduction to Heap overflows on AIX 5.3L 25/08/2005 The Pharming Guide: Understanding & Preventing DNS Related Attacks by Phishers 22/08/2005 Stopping Automated Attack Tools 26/04/2005 Anti Brute Force Resource Metering 21/03/2005 Security Best Practice: Host Naming & URL Conventions 28/01/2005 Blind Exploitation of Stack Overflow Vulnerabilities 22/12/2004 Second-Order Code Injection Attacks 01/11/2004 The Phishing Guide: Understanding & Preventing Phishing Attacks 22/09/2004 Hackproofing MySQL 05/07/2004 Passive Information Gathering - The Analysis of Leaked Network Security Information 04/02/2004 Defeating the Stack Based Buffer Overflow Prevention Mechanism of Microsoft Windows 2003 Server 08/09/2003 Variations in Exploit methods between Linux and Windows 10/07/2003 Writing Secure ASP Scripts 09/05/2003 New Attack Vectors and a Vulnerability Dissection of MS03-007 21/03/2003 Quantum Cryptography - A Study Into Present Technologies and Future Applications (Appendix) 14/01/2003 Threat Profiling Microsoft SQL Server (A Guide to Security Auditing) 03/09/2002 Microsoft SQL Server Passwords (Cracking the password hashes) 08/07/2002 Violating Database Security Measures 24/06/2002 (more) Advanced SQL Injection 18/06/2002 Non-stack Based Exploitation of Buffer Overrun Vulnerabilities on Windows NT 2000 XP 05/06/2002 Assessing IIS Configuration Remotely (Low Level IIS Application Assessment) 28/02/2002 Hackproofing Oracle Application Server (A Guide to Securing Oracle 9) 06/02/2002 Advanced SQL Injection in SQL Server Applications 31/01/2002 Email spoofing and CDONTS.NEWMAIL (Protecting Microsoft Active Server Pages Applications) 09/01/2002 Creating Arbitrary Shellcode in Unicode Expanded Strings (The "Venetian" Exploit) 08/01/2002 Hackproofing Lotus Domino Web Server 20/12/2001 Windows 2000 Format String Vulnerabilities 01/05/2001
Read what some of our satisfied customers are saying about us.