Oracle Credentials
#
Description#
General- Documentation: https://docs.oracle.com/en/database/oracle/oracle-database/index.html
- Summary: Oracle database is a multi-model database management system. This detector aims at finding Oracle credentials in the form of URI connection strings.
- IPs allowlist: This can be implemented on the server side.
- Scopes: Oracle DB supports Role Based Access Control. Users can thus be granted with different access ranges. Here is a more detailed documentation on this topic.
#
Revoke the secretPrimary administrators of the database can revoke and manage users' credentials. Users can also change their own password using command line tools.
#
Check for suspicious activityDatabase access logs can be stored and audited on the server side to investigate suspicious activities.
Oracle uri
#
Details for Family: Database
Category: Data storage
High recall: True
Validity check available: False
Minimum number of matches: 8
Occurrences found for one million commits: 0.17
Prefixed: True
PreValidators:
- type: FilenameBanlistPreValidator banlist_extensions: - ^(cs|x|p|s|r|m)?html5?~?$ - ^[aps]?cssc?~?$ - ^lock$ - ^mdx?~?$ - ^storyboard(c|er)?~?$ - ^xib$ banlist_filenames: [] check_binaries: false- type: ContentWhitelistPreValidator patterns: - oracle
#
Examples- text: > CONNECTION_URI="oracle://root:m42ploz2wd@google.com:5434/thegift" host: google.com port: "5434" username: root password: m42ploz2wd scheme: oracle database: thegift connection_uri: oracle://root:m42ploz2wd@google.com:5434/thegift
# Test special characters in password- text: > CONNECTION_URI="oracle://root:m42p!o@2wd@google.com:5434/thegift" host: google.com port: "5434" username: root password: m42p!o@2wd scheme: oracle database: thegift connection_uri: oracle://root:m42p!o@2wd@google.com:5434/thegift