[dbsec] Re: Extracting password hashes from raw oracle DB files

• From: Hamid Kashfi <hamid@xxxxxxxxx>
• To: dbsec@xxxxxxxxxxxxx
• Date: Sat, 20 Jun 2009 02:06:21 +0430

Following my own post ,
I`ve to mention that I already know the trick mentioned in
Oracle-Hackers-Hanbook ,
For example ,

 hexdump -C -s 448767 -n 2000 system01.dbf

But this rise the question whether offsets are always the same (at least
for default accounts like SYS) ?

If not , any pattern to look for , to match & locate offsets of every
user and it`s hash in dbf file ?


End. :)

• Follow-Ups:
  • [dbsec] Re: Extracting password hashes from raw oracle DB files
    • From: David Litchfield

• References:
  • [dbsec] Re: NASTEC 2008 (Mc Gill University, Montreal, Canada)CfP-Extended
    • From: JN Contact
  • [dbsec] Re: NASTEC 2008 (Mc Gill University, Montreal, Canada)CfP-Extended
    • From: Jonathan Leffler
  • [dbsec] Extracting password hashes from raw oracle DB files
    • From: Hamid Kashfi

Other related posts:

• » [dbsec] Extracting password hashes from raw oracle DB files - Hamid Kashfi
• » [dbsec] Re: Extracting password hashes from raw oracle DB files - Hamid Kashfi
• » [dbsec] Re: Extracting password hashes from raw oracle DB files - David Litchfield

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription