Geeks With Blogs
Blog Moved to http://podwysocki.codebetter.com/ Blog Moved to http://podwysocki.codebetter.com/
Rocky Heckman did a screencast about Assembly Hijacking that is well worth checking out.  It is available in Flash format here:  http://www.rockyh.net/AssembHijacking/AssembHijacking.html
 
He covers the following topics:
*  Understanding Attackers
*  Testing for SQL Injection
*  Testing for SQL Account Privileges
*  Probing the file system
*  Replacing low level libraries (such as logging)
*  Inference Attacks
 
It is a very good presentation which can open eyes especially to security risks mitigations that you can do to prevent much of what is shown here, such as strong naming assemblies, running under least-privileged accounts, etc.
 
Rocky's blog is definitely worth reading on a regular basis for security information.
 
Posted on Thursday, June 1, 2006 5:43 PM .NET | Back to top


Comments on this post: Assembly Hijacking Presentation

No comments posted yet.
Your comment:
 (will show your gravatar)


Copyright © Matthew Podwysocki | Powered by: GeeksWithBlogs.net