Penetration Testing
Oracle Application Express / Password hashes Feb 20 2013 11:34AM
Guillaume Lopes (isec gls gmail com) (1 replies)
Hello all,

I have to crack password hashes from an Oracle application (APEX). The
version is APEX 4.0.

I have found documentation saying that password hashes are the
concatenation of the username, the password and the security groupd id
since APEX 3.0.

Do you know a tool or another way to retrieve clear passwords from hashes ?

I tried to use Repscan but the free trial seems to have a bug.



This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

[ reply ]
Re: Oracle Application Express / Password hashes Feb 20 2013 12:58PM
Per Thorsheim (per thorsheim net)


Privacy Statement
Copyright 2010, SecurityFocus