Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Oracle Application Express / Password hashes

From: Guillaume Lopes <isec.gls () gmail com>
Date: Wed, 20 Feb 2013 12:34:17 +0100
Hello all,

I have to crack password hashes from an Oracle application (APEX). The
version is APEX 4.0.

I have found documentation saying that password hashes are the
concatenation of the username, the password and the security groupd id
since APEX 3.0.

Do you know a tool or another way to retrieve clear passwords from hashes ?

I tried to use Repscan but the free trial seems to have a bug.

Regards,
Guillaume

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: