INTERVIEW: David Litchfield, NGS Software

Previously on Risky Business...
21 May 2008 » Risky Business Extra

In this interview database security legend David Litchfield from NGS Software talks about his latest research and development efforts. We caught up with Litchfield at the last AusCERT conference as well. When we interviewed him back in 2007, he told us about his plans to launch FEDS -- the forensic examiner's database scalpel. Well, Litchfield says it should be released in the next few months.

We talk about FEDS in this interview and also talk about lateral SQL injection, a vulnerability class he recently unveiled. We also talked to David about the recent spate of SQL injection attacks that have compromised half a million hosts... enjoy!