The Metasploit Project hosts the world's largest database of quality assured exploits, including hundreds of remote exploits, auxiliary modules, and payloads. You can even review the Metasploit Framework source code of any module - or write your own.

Search for modules

Oracle SMB Relay Code Execution

This module will help you to get Administrator access to OS using an unprivileged Oracle database user (you need only CONNECT and RESOURCE privileges). To do this you must firstly run smb_sniffer or smb_relay module on your sever. Then you must connect to Oracle database and run this module Ora_NTLM_stealer.rb which will connect to your SMB sever with credentials of Oracle RDBMS. So if smb_relay is working, you will get Administrator access to server which runs Oracle. If not than you can decrypt HALFLM hash.

Rank

• Normal

Authors

• Sh2kerr < research[ad]dsecrg.com >

References

• http://dsecrg.com/pages/pub/show.php?id=17

Development

• Source Code
• History

Similar Modules

• auxiliary/admin/oracle/oracle_login
• auxiliary/admin/oracle/oracle_sql
• auxiliary/admin/oracle/oraenum
• auxiliary/admin/oracle/osb_execqr
• auxiliary/admin/oracle/osb_execqr2
• auxiliary/admin/oracle/osb_execqr3
• auxiliary/admin/oracle/post_exploitation/win32exec
• auxiliary/admin/oracle/post_exploitation/win32upload
• auxiliary/admin/oracle/sid_brute
• auxiliary/admin/oracle/tnscmd

Usage Information

Module Options