-
Notifications
You must be signed in to change notification settings - Fork 148
Expand file tree
/
Copy pathoracle.html
More file actions
97 lines (84 loc) · 2.32 KB
/
oracle.html
File metadata and controls
97 lines (84 loc) · 2.32 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
<h3 id="data-targeting">Data Targeting</h3>
<p class="pageDescription">{{site.data.injectionDescriptions.dataTargeting}}</p>
<h3 id="data-targeting-queries">Data Targeting queries</h3>
<table class="table table-striped table-hover">
<thead>
<tr>
<th>Description</th>
<th align="left">Query</th>
</tr>
</thead>
<tbody>
<tr>
<td>Finding Sensitive Data</td>
<td>SELECT owner,table_name,column_name FROM all_tab_columns WHERE column_name LIKE '%PASS%';</td>
</tr>
<tr>
<td>Finding Privileges</td>
<td>SELECT * FROM session_privs<br>SELECT * FROM USER_SYS_PRIVS<br>SELECT * FROM USER_TAB_PRIVS<br>SELECT * FROM USER_TAB_PRIVS_MADE<br>SELECT * FROM USER_TAB_PRIVS_RECD<br>SELECT * FROM ALL_TAB_PRIVS<br>SELECT * FROM USER_ROLE_PRIVS<br></td>
</tr>
<tr>
<td>Extracting Stored Procedure/Java Sources</td>
<td>SELECT * FROM all_source WHERE owner NOT IN ('SYS','SYSTEM')<br>SELECT * FROM all_source WHERE TYPE LIKE '%JAVA %'<br>SELECT TO_CHAR(DBMS_METADATA.get_ddl('TABLE','DEPT','CONSUELA')) FROM dual</td>
</tr>
</tbody>
</table>
<h3 id="data-targeting-regexes">Data Targeting regexes</h3>
<table class="table table-striped table-hover">
<thead>
<tr>
<th>Description</th>
<th align="left">Regex</th>
</tr>
</thead>
<tbody>
<tr>
<td>All major credit card providers</td>
<td>^(?:4[0-9]{12}(?:[0-9]{3})?|(?:5[1-5][0-9]{2}|222[1-9]|22[3-9][0-9]|2[3-6][0-9]{2}|27[01][0-9]|2720)[0-9]{12}|3[47][0-9]{13}|3(?:0[0-5]|[68][0-9])[0-9]{11}|6(?:011|5[0-9]{2})[0-9]{12}|(?:2131|1800|35\d{3})\d{11})$</td>
</tr>
<tr>
<td>Unmasked | Masked SSN</td>
<td>^(\d{3}-?\d{2}-?\d{4}|XXX-XX-XXXX)$</td>
</tr>
</tbody>
</table>
<h3 id="data-targeting-keywords">Data Targeting keywords</h3>
<table class="table table-striped table-hover">
<thead>
<tr>
<th>Keyword</th>
</tr>
</thead>
<tbody>
<tr>
<td>credit</td>
</tr>
<tr>
<td>card</td>
</tr>
<tr>
<td>pin</td>
</tr>
<tr>
<td>cvv</td>
</tr>
<tr>
<td>pan</td>
</tr>
<tr>
<td>password</td>
</tr>
<tr>
<td>social</td>
</tr>
<tr>
<td>ssn</td>
</tr>
<tr>
<td>account</td>
</tr>
<tr>
<td>confidential</td>
</tr>
</tbody>
</table>