The Oracle Hacker's Handbook: Hacking and Defending Oracle

Front Cover
John Wiley & Sons, Mar 31, 2007 - Computers - 216 pages
David Litchfield has devoted years to relentlessly searching out the flaws in the Oracle database system and creating defenses against them. Now he offers you his complete arsenal to assess and defend your own Oracle systems. This in-depth guide explores every technique and tool used by black hat hackers to invade and compromise Oracle and then it shows you how to find the weak spots and defend them. Without that knowledge, you have little chance of keeping your databases truly secure.
 

What people are saying - Write a review

We haven't found any reviews in the usual places.

Contents

Chapter 1 Overview of the Oracle RDBMS
1
Chapter 2 The Oracle Network Architecture
15
Chapter 3 Attacking the TNS Listener and Dispatchers
31
Chapter 4 Attacking the Authentication Process
43
Chapter 5 Oracle and PLSQL
59
Chapter 6 Triggers
91
Chapter 7 Indirect Privilege Escalation
99
Chapter 8 Defeating Virtual Private Databases
107
Chapter 9 Attacking Oracle PLSQL Web Applications
115
Chapter 10 Running Operating System Commands
131
Chapter 11 Accessing the File System
137
Chapter 12 Accessing the Network
145
Appendix A Default Usernames and Passwords
153
Index
177
Copyright

Other editions - View all

Common terms and phrases

About the author (2007)

DAVID LITCHFIELD is founder and chief research scientist of NGSSoftware Ltd., a UK-based security solutions provider. He has been recognized as the world's premier expert on Oracle database security, and is the designer of NGSSQuirreL, a powerful tool for identifying and assessing database vulnerability. David is a regular conference speaker and has lectured government agencies on security topics.

Bibliographic information