Oracle Database Enumeration
This module provides a simple way to scan an Oracle database server for configuration parameters that may be useful during a penetration test. Valid database credentials must be provided for this module to run.
Rank
- Normal
Authors
- Carlos Perez < carlos_perez [at] darkoperator.com >
Development
Similar Modules
- auxiliary/admin/oracle/ora_ntlm_stealer
- auxiliary/admin/oracle/oracle_login
- auxiliary/admin/oracle/oracle_sql
- auxiliary/admin/oracle/osb_execqr
- auxiliary/admin/oracle/osb_execqr2
- auxiliary/admin/oracle/osb_execqr3
- auxiliary/admin/oracle/post_exploitation/win32exec
- auxiliary/admin/oracle/post_exploitation/win32upload
- auxiliary/admin/oracle/sid_brute
- auxiliary/admin/oracle/tnscmd
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use auxiliary/admin/oracle/oraenum
msf auxiliary(oraenum) > set RHOST [TARGET IP]
msf auxiliary(oraenum) > run
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use auxiliary/admin/oracle/oraenum
msf auxiliary(oraenum) > set RHOST [TARGET IP]
msf auxiliary(oraenum) > run
Module Options
| DBPASS | The password to authenticate with. (default: TIGER) |
| DBUSER | The username to authenticate with. (default: SCOTT) |
| RHOST | The Oracle host. (default: ) |
| RPORT | The TNS port. (default: 1521) |
| SID | The sid to authenticate with. (default: ORCL) |
| VERBOSE | Enable detailed status messages |
| WORKSPACE | Specify the workspace for this module |