Geeks With Blogs
Welcome to Geeks with Blogs
Matthew Podwysocki
News Disclaimer
The views expressed on this weblog are mine and do not necessarily reflect the views of my employer.

All postings are provided "AS IS" with no warranties, and confer no rights.

 Subscribe in a reader


I'm test-driven!
Locations of visitors to this page
Post Categories
Archives
Blog Moved to http://podwysocki.codebetter.com/ Blog Moved to http://podwysocki.codebetter.com/
<< Day 8 of the Background Intelligent Transfer Service (BITS) Managed Wrapper | Home | Day 8 of the Background Intelligent Transfer Service (BITS) Managed Wrapper >>
Assembly Hijacking Presentation
Rocky Heckman did a screencast about Assembly Hijacking that is well worth checking out.  It is available in Flash format here:  http://www.rockyh.net/AssembHijacking/AssembHijacking.html
 
He covers the following topics:
*  Understanding Attackers
*  Testing for SQL Injection
*  Testing for SQL Account Privileges
*  Probing the file system
*  Replacing low level libraries (such as logging)
*  Inference Attacks
 
It is a very good presentation which can open eyes especially to security risks mitigations that you can do to prevent much of what is shown here, such as strong naming assemblies, running under least-privileged accounts, etc.
 
Rocky's blog is definitely worth reading on a regular basis for security information.
 
Posted on Thursday, June 1, 2006 5:43 PM .NET | Back to top

Related Posts on Geeks With Blogs Matching Categories

Comments on this post: Assembly Hijacking Presentation

No comments posted yet.
Your comment:
 (will show your gravatar)

Copyright © Matthew Podwysocki | Powered by: GeeksWithBlogs.net


Geeks With Blogs Content Categories ASP.Net SQL Server Apple Google SharePoint Windows Visual Studio Team Foundation Server Agile Office Design Patterns Web Azure
Brand New Posts on Geeks with Blogs 0