HSC
Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
Text mode: access to the page content
Hervé Schauer Consultants
You are here: Home > Resources > Lectures > Database and ERP security
Go to: HSC Trainings
Search:  
Version française
   Services   
o Skills & Expertise
o Consulting
o ISO 27001 services
o Vulnerabilities monitoring
o Audit & Assessment
o Penetration tests
o Vunerability assessment (TSAR)
o Forensics
o ARJEL
o Training courses
o E-learning
   Conferences   
o Agenda
o Past events
o Tutorials
   Resources   
o Thematic index
o Tips
o Lectures
o Courses
o Articles
o Tools (download)
o Vulnerability watch
   Company   
o Hervé Schauer
o Team
o Job opportunities
o Credentials
o History
o Partnerships
o Associations
   Press and
 communication
 
 
o HSC Newsletter
o Press review
o Press releases
o Publications
   Contacts   
o How to reach us
o Specific inquiries
o Directions to our office
o Hotels near our office
|>|Database and ERP security  
> Access to the content HTML Beginning of the presentation
PDF PDF version [378 KB]
AdobeFlash Adobe Flash version  
> Description Database and ERP Security  
> Context & Dates Talk presented during Convention Sécurité Management 2005, on 15 June 2005.
 
> Author Alain Thivillon (Alain.Thivillon@hsc.fr) and Nicolas Jombart 
> Type [ French - HTML ]  
> Abstract &
Table of content
Flyleaf
Place des bases de données dans la sécurité du SI
Contraintes sur la sécurité
Contraintes (2)
Types d'attaques
Types d'attaques (2)
Securité Listener
Mots de passe par défaut
Vulnérabilités Oracle
Vulnérabilités Oracle
En environnement Internet
Défense en profondeur
Conseils de sécurité
Risques applicatifs
Injection SQL
Injection SQL
De l'utilité des messages d'erreur
Se prémunir
Sécurité des ERP
Exemple : SAP
SAP et Oracle
Télémaintenance SAP
Conclusions

Demonstrations in Flash AdobeFlash
  1. SQL Injection (3918 KB, 3'21")
    Better see it in a 800x600 pop-up
 
> Related documents
themeDatabases
[Presentation]  Databases security [28 September 2007 - French]
[Presentation]  Database and security [8 July 2003 - French]
[Presentation]  DBMS and security [1 April 2002 - French]
[Techno-watch]  Illustra [15 January 1996 - French]
themeWeb
[Course]  Web Servers and applications Security
[Tool]  Webef tool [Bruteforcer of web server files and directories - English]
[Presentation]  Webshells, or how to open your network's doors ? [21 October 2010 - French]
[Presentation]  JBoss AS: exploitation and reassure [11 June 2010 - French]
[Presentation]  Webshells, or how to open your network's doors ? [16 March 2010 - French]
[Presentation]  Webshells, real threat for information systems ? [1 December 2009 - French]
[Presentation]  Security issue seen in enterprises web applications [27 November 2008 - French]
[Presentation]  Application security [23 October 2008 - French]
[Presentation]  Feedback from PHP applications assessment [21 November 2007 - French]
[Presentation]  Evolution of Cross-Site Request Forgery Attacks [1 June 2007 - French]
[Presentation]  Encrypting hostile Web content over HTTP [31 May 2007 - French]
[Presentation]  Web 2.0 : more ergonomic... and less secure ? [22 May 2007 - French]
[Tip]  Configuring and using modsecurity2 [24 April 2007 - French]
[Tip]  Presentation of Apache ModSecurity module [14 June 2006 - French]
[Presentation]  SSL VPN connection multiplexing techniques [7 April 2005 - English]
[Presentation]  PHP and security [27 November 2003 - French]
[Presentation]  Web Services and Security [10 September 2003 - French]
[Tip]  HTTP/HTTPS authentication methods [10 March 2003 - French]
[Presentation]  The cross-site scripting [27 February 2003 - French]
[Presentation]  DBMS and security [1 April 2002 - French]
[Presentation]  Apache and web servers security [1 February 2002 - French]
[Tip]  Implementing filtering on a reverse HTTP proxy using mod_eaccess [3 September 2001 - French]
[Tool]  Subweb tool [HTTP reverse proxy - English]
[Tool]  Babelweb tool [Automatic information retrieving from of a web server - English]
[Tip]  Universal CGI wrapper [5 August 2001 - French]
[Tip]  Why HTTPS is not web security [7 May 2001 - English]
[Tip]  Filtering URLs in a reverse proxy [5 May 2001 - French]
[Presentation]  Hacking web servers [14 March 2001 - French]
[Tip]  Why a reverse proxy [13 February 2001 - French]
[Tip]  Apache as a reverse proxy [11 November 2000 - French]
[Presentation]  Secure internet services (email, DNS, web) under Linux [26 September 2000 - English]
[Presentation]  Secure internet services (email, DNS, web) under Linux [26 April 2000 - French/English]
[Presentation]  Secure Internet services (email, DNS, web) under Linux [1 February 2000 - French]
[Techno-watch]  Netscape [16 January 1996 - French]
> Copyright © 2005, Hervé Schauer Consultants, all rights reserved.

 

Last modified on 20 June 2005 at 16:32:44 CET - webmaster@hsc.fr
Information on this server - © 1989-2010 Hervé Schauer Consultants