About the White Paper:
"The Database Hacker's Handbook: Defending Database Servers," Chapter 22, 'SQL Server: Exploitation, Attack, and Defense'
About the White Paper:
American corporations lose an estimated $300 billion a year to every form of hacking, cracking and physical security breaches. Maintaining a secure database has become an essential function for all database administrators. Hackers are continuously finding new ways to breach systems and viruses are becoming increasingly more specialized and have recently begun to attack database installations.
Learn all about SQL Server database security in this series of book excerpts from Chapter 22, 'SQL Server: Exploitation, Attack, and Defense,' from "The Database Hacker's Handbook: Defending Database Servers," written by David Litchfield, Chris Anley, John Heasman and Bill Grindlay, courtesy of Wiley Publishing.
Introduction
This chapter covers the ways in which SQL Server can be attacked on a network level, and the methods often used by attackers to hide evidence of their intrusion. It also details effective defenses against these attacks.
Chapter 22 excerpts: 'SQL Server: Exploitation, Attack, and Defense'
- Exploiting SQL Server design flaws
- SQL injection
- System-level SQL Server attacks
- Time delay SQL injections
- Vulnerable stored procedures
- Port scanning for SQL Server services
- Defending against SQL injection
- How SQL Server hackers cover their tracks
|
