A Discussion on Memory-Resident Backdoors in Oracle presented at DeepSec 2007

by David Litchfield,

Summary : Oracle "rootkits", in other words backdoors, have been discussed in the past but none that merit any serious concern. So far, those that have been presented are simple and trivial to spot. This presentation will look at memory-resident backdoors that are considerably harder to find, delivery mechanisms and potential defences. A working example will be demonstrated.