Oracle, Interrupted: Stealing Sessions and Credentials
- Type
- Paper
- Tags
- Oracle
- Authors
- Steve Ocepek, Wendel Guglielmetti Henrique
- Event
- Black Hat EU 2010
- Indexed on
- Mar 26, 2013
- URL
- https://media.blackhat.com/bh-eu-10/whitepapers/Henrique_Ocepek/BlackHat-EU-2010-Henrique-Ocepek-Oracle-Interrupted-wp.pdf
- File name
- BlackHat-EU-2010-Henrique-Ocepek-Oracle-Interrupted-wp.pdf
- File size
- 1.9 MB
- MD5
- 8cc0a3881df1850dd64bef7304521d3c
- SHA1
- 9a5407ca24b857f30936bd890feb9e5223db43b0
In a world of free, ever-present encryption libraries, many penetration testers still find a lot of great stuff on the wire. Database traffic is a common favorite, and with good reason: when the data includes PAN, Track, and CVV, it makes you stop and wonder why this stuff isn’t encrypted by default. However, despite this weakness, we still need someone to issue queries before we see the data. Or maybe not… after all, it’s just plaintext. Wendel G. Henrique and Steve Ocepek of Trustwave’s SpiderLabs division offer a closer look at the world’s most popular relational database: Oracle. Through a combination of downgrade attacks and session take-over exploits, this talk introduces a unique approach to database account hijacking. Using a new tool, thicknet, released at Black Hat Europe, the team will demonstrate how deadly injection attacks can be to database security.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
