17 Nov 2009 von Alexander Kornbrust.

Metasploit 3.3, the leading exploit framework is out. Here an extract from the Metasploit blog:

“Oracle exploit support has been implemented through a tag-team effort between MC and Chris Gates, with assistance from Alexander Kornbrust. Oracle modules have been developed for exploiting TNS protocol stack and Web-based Oracle services, as well as post-authentication database-level privilege escalation flaws. ”

Version 3.3. (release notes) is the largest known ruby application (375,000 lines of code) and comes with some new Oracle features

• Support for the Oracle InstantClient Ruby driver as an exploit mixin
• Extensive support for exploitation and post-exploitation tasks against Oracle databases

Have fun using Metasploit.

Geschrieben in Tools, Exploit, Oracle Security, Allgemein | Drucken | Keine Kommentare »

17 Nov 2009 von Alexander Kornbrust.

In 3 weeks Paul Wright will give an 1 day workshop for SANS (Sat. 5. Dec. in London) about Database Activity Monitoring Systems (DAMS).  Paul will use the free Hedgehog Standard Edition in the class to demonstrate solutions for common problems like user monitoring, defending against public zero days, …

Here is the table of content:

1. Defend against public and zero day attacks via free custom written IDS rules
2. Gain  Compliance
3. User activity monitoring
4. Application monitoring
5. Sensitive data access monitoring
6. Diagnostics prior to changes such as CPU installation.

A case study about using DAMS from Paul Wright is available in the UKOUG Scene magazine (Issue 39).

You should not miss the chance to join this workshop because it can help your company/organization to secure their databases …

Geschrieben in Trainings, Allgemein | Drucken | Keine Kommentare »