https://github.com/quentinhardy/odat
ODAT linux standalone version at https://github.com/quentinhardy/odat/releases/
ODAT
ODAT (Oracle Database Attacking Tool) is an open source penetration testing tool that tests the security ofOracle Databases remotely.
Usage examples of ODAT:
- You have an Oracle database listening remotely and want to find valid SIDs and credentials in order to connect to the database
- You have a valid Oracle account on a database and want to escalate your privileges to become DBA or SYSDBA
- You have a Oracle account and you want to execute system commands (e.g. reverse shell) in order to move forward on the operating system hosting the database
Tested on Oracle Database 10g, 11g and 12c(12.1.0.2.0).
ODAT is compatible with Linux only.
Standalone versions exist in order to don't have need to install dependencies and slqplus (seehttps://github.com/quentinhardy/odat/releases/). The ODAT standalone has been generated thanks topyinstaller.
No comments:
Post a Comment