File oracle-enum-users

脚本使用类型: portrule
脚本所属分类: intrusive, auth
脚本下载地址: http://nmap.org/svn/scripts/oracle-enum-users.nse

User Summary

Attempts to enumerate valid Oracle user names against unpatched Oracle 11g servers (this bug was fixed in Oracle's October 2009 Critical Patch Update).

Script Arguments

oracle-enum-users.sid

the instance against which to attempt user enumeration

passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb

Example Usage

执行格式

nmap --script oracle-enum-users --script-args oracle-enum-users.sid=ORCL,userdb=orausers.txt -p 1521-1560 <host>

If no userdb is supplied the default userlist is used

Script Output

PORT     STATE SERVICE REASON
1521/tcp open  oracle  syn-ack
| oracle-enum-users:  
|   haxxor is a valid user account
|   noob is a valid user account
|_  patrik is a valid user account

The get_random_string function was stolen from Ron's smb code

Requires

• math
• nmap
• shortport
• stdnse
• string
• table
• tns
• unpwdb
• openssl

Author: Patrik Karlsson

License: VER007 整理 http://www.ver007.com