google_oracle_hacking_us.pdf
(
90 KB
)
Pobierz
Google Hacking of Oracle Technologies V1.02
Inspired by a presentation of Johnny Long at the Black Hat Europe 2005
(http://www.blackhat.com/presentations/bh-europe-05/BH_EU_05-Long.pdf ) in Amsterdam I
created a list with Google URLs for several Oracle technologies.
This document is not static. Check for updates regularly.
History:
V1.00 - Initial release
V1.01 – Added related links, connections.xml added
V1.02 – several new links added (WebConferencing, iStore, CRM, Files online, …)
Database Logins
iSQL*Plus is the web version of SQL*Plus the default user interface for the Oracle database
iSQL*Plus
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus&btnG=Search
iSQL*Plus 9.2
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2&btnG=Search
iSQL*Plus 9.2.0.1
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2.0.1&btnG=Search
iSQL*Plus 9.2.0.2
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2.0.2&btnG=Search
iSQL*Plus 9.2.0.3
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2.0.3&btnG=Search
iSQL*Plus 9.2.0.4
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2.0.4&btnG=Search
iSQL*Plus 9.2.0.5
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2.0.5&btnG=Search
iSQL*Plus 9.2.0.6
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A9.2.0.6&btnG=Search
© 2005 by Red-Database-Security GmbH
1/8
Google Hacking of Oracle Technologies V1.02
iSQL*Plus 10.1
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A10.1&btnG=Search
iSQL*Plus 10.1.0.1
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A10.1.0.1&btnG=Search
iSQL*Plus 10.1.0.2
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A10.1.0.2&btnG=Search
iSQL*Plus 10.1.0.3
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A10.1.0.3&btnG=Search
iSQL*Plus 10.1.0.4
http://www.google.com/search?hl=en&lr=&c2coff=1&q=intitle%3AiSQL+intitle%3ARelease+inurl
%3Aisqlplus+intitle%3A10.1.0.4&btnG=Search
© 2005 by Red-Database-Security GmbH
2/8
Google Hacking of Oracle Technologies V1.02
Oracle Application Server:
iAS Demopages
http://www.google.de/search?num=100&q=++%22inurl%3A%2FiASDemos.htm%22
http://www.google.de/search?num=100&q=++%22inurl%3A%2FJ2EEandIA.htm%22
Oracle Forms
Oracle Forms 6i (using CGI)
http://www.google.com/search?q=+inurl%3Af60cgi&btnG=Search&num=100
http://www.google.com/search?num=100&hl=de&c2coff=1&q=+inurl%3Aifcgi60
Oracle Forms 6i (using Servlets)
http://www.google.com/search?num=100&hl=en&lr=&c2coff=1&q=inurl%3Af60servlet
Oracle Forms 9i
http://www.google.com/search?num=100&hl=en&lr=&c2coff=1&q=inurl%3Af90servlet
Oracle Reports
Oracle Reports 6i
http://www.google.com/search?num=100&q=+inurl%3Arwcgi60
Oracle Reports 9i
http://www.google.com/search?q=%22inurl%3Arwservlet%22+%22inurl%3Areports%22&num=10
0
Oracle Discoverer
Oracle Discoverer 9i Viewer
http://www.google.com/search?num=100&q=%22inurl%3Adiscoverer%2Fviewer%22
Oracle Discoverer 9i Plus
http://www.google.com/search?num=100&q=%22inurl%3Adiscoverer%2Fplus%22
Oracle Discoverer 10g
http://www.google.com/search?num=100&q=%22inurl%3Adiscoverer%2Fapp%22
© 2005 by Red-Database-Security GmbH
3/8
Google Hacking of Oracle Technologies V1.02
Oracle HTTP Server
Browsable Oracle HTTP Server Directories
http://www.google.com/search?num=100&q=%22Index+of%22++%22Oracle-HTTP-
Server%22+Server+at+Port+%22Last+modified%22
Oracle HTTP Server 1.3.12
http://www.google.com/search?num=100&q=%22Index+of%22++%22Oracle-HTTP-
Server%22+Server+at+Port+%22Last+modified%22+1.3.12
Oracle HTTP Server 1.3.19
http://www.google.com/search?num=100&q=%22Index+of%22++%22Oracle-HTTP-
Server%22+Server+at+Port+%22Last+modified%22+1.3.19
Oracle HTTP Server 1.3.22
http://www.google.com/search?num=100&q=%22Index+of%22++%22Oracle-HTTP-
Server%22+Server+at+Port+%22Last+modified%22+1.3.22
Oracle HTTP Server 1.3.28
http://www.google.com/search?num=100&q=%22Index+of%22++%22Oracle-HTTP-
Server%22+Server+at+Port+%22Last+modified%22+1.3.28
Oracle HTTP Server 10g
http://www.google.com/search?num=100&q=%22Index+of%22++%22Oracle-HTTP-
Server%22+Server+at+Port+%22Last+modified%22++%22Oracle-Application-Server-10g%22
Oracle HTTP Server with 300-Error Message
http://www.google.de/search?num=100&q=%22Oracle+HTTP+Server+Powered+by+Apache%22+
%22intitle%3A300
Oracle HTTP Server with 302-Error Message
http://www.google.de/search?num=100&q=%22Oracle+HTTP+Server+Powered+by+Apache%22+
%22intitle%3A302
Oracle HTTP Server with 401-Error Message
http://www.google.de/search?num=100&q=%22Oracle+HTTP+Server+Powered+by+Apache%22+
%22intitle%3A401%22
Oracle HTTP Server with 403-Error Message
http://www.google.de/search?num=100&q=%22Oracle+HTTP+Server+Powered+by+Apache%22+
%22intitle%3A403%22
Oracle HTTP Server with 404-Error Message
http://www.google.de/search?num=100&q=%22Oracle+HTTP+Server+Powered+by+Apache%22+
%22intitle%3A404+Not+Found%22
© 2005 by Red-Database-Security GmbH
4/8
Google Hacking of Oracle Technologies V1.02
Oracle Webdav
http://www.google.com/search?num=100&q=%22inurl%3Adav_public%22
Oracle Single-Sign-On Page
http://www.google.de/search?num=100&q=%22intitle%3ASingle+Sign-
On%22+%22Oracle+Corporation%22+%22All+rights+reserved%22
http://www.google.com/search?num=100&hl=de&q=%22inurl%3Apls%2Forasso%22
Oracle Portal
http://www.google.com/search?num=100&hl=de&c2coff=1&q=%22inurl%3Apls%2Fportal%22
Oracle HTMLDB
http://www.google.com/search?num=100&q=%22inurl%3Apls%2Fhtmldb%22
Oracle Internet Directory OIDDAS
http://www.google.com/search?q=%22inurl%3Aoiddas%22&num=100
Designer generated Web Application
http://www.google.com/search?q=%22inurl:pls%22+%22inurl:startup%22+%22inurl:%24.%22&nu
m=100
Oracle Enterprise Manager
Oracle Enterprise Manager 9i
http://www.google.com/search?q=%22inurl%3A%2Femd%2Fmain%22&num=100
Oracle Enterprise Manager 10g
http://www.google.com/search?num=100&q=%22inurl%3A%2Fem%2Fconsole%22+%22intitle%3
AOracle+Enterprise+Manager%22++Copyright+Oracle
Oracle Ultrasearch
http://www.google.com/search?num=100&hl=de&c2coff=1&q=%22inurl%3A%2Fultrasearch%2Fq
uery%22
© 2005 by Red-Database-Security GmbH
5/8
Plik z chomika:
gorzkirdk
Inne pliki z tego folderu:
Google Maps Hacks.pdf
(41846 KB)
CCTV HACK.pdf
(8224 KB)
BH_US_11_BrownRagan_Pulp_Google.pdf
(6720 KB)
BH_EU_05-Long.pdf
(6680 KB)
1-Franco-Google-REV1.pdf
(4057 KB)
Inne foldery tego chomika:
Anti_Spyware
Cleaning_and_Tweaking
Developer_Tools
Drivers_and_Mobile_Phones
Hacks$$$
Zgłoś jeśli
naruszono regulamin