Oracle TNS
Port: TCP/1521
Last updated
Port: TCP/1521
Last updated
The TNS listener is configured to support various network protocols, including TCP/IP
, UDP
, IPX/SPX
, and AppleTalk
The configuration files for Oracle TNS are called tnsnames.ora
and listener.ora
and are typically located in the $ORACLE_HOME/network/admin
directory
Oracle 9 has a default password, CHANGE_ON_INSTALL
, whereas Oracle 10 has no default password set
Oracle DBSNMP service also uses a default password, dbsnmp
Each database or service has a unique entry in the file
In Oracle RDBMS, a System Identifier (SID
) is a unique name that identifies a particular database instance
The SIDs are an essential part of the connection process, as it identifies the specific instance of the database the client wants to connect to.
There are various ways to enumerate, or better said, guess SIDs. Therefore we can use tools like nmap
, hydra
, odat
, and others.
If not installed, see Pentesting Machine
possible to try known credentials to use the System Databse Admin sysdba
:
Then list current user privs:
From this point, we could retrieve the password hashes from the sys.user$
and try to crack them offline:
: