[Full-disclosure] [Oracle] Rainbow crack table Oracle patch.

Fabien Kraemer fabien.kraemer at gmail.com
Wed Sep 20 15:47:42 BST 2006 

Hello,

I have written a patch for rainbowrack 1.2  ->
http://www.antsight.com/zsl/rainbowcrack/rainbowcrack-1.2-src.zip that add
the suport for the oracle hash algorithm into rainbowcrack.

The problem is that Oracle hash depend on the login name. So you have to
  generate rainbow table for each login. A good idea is to create
rainbow table for the defaults system account like : sys, system etc...

Enclosed you can find the modified file  (do no have time to make a .diff
neither to optimize so much the code).

I ve put also a generate.bat file in order to calculate the rainbow table
for 1 7 password length.


Remark: the provided source are for the account SYSTEM

    const unsigned char login[200]="SYSTEM";
    const int longueur=6; (length of the login)

If you want to calculate the table for another account you will have to
modify the source and compile it again (or maybe if u have time u can add a
command line parameter and make a new version of this patch)

Have fun.

Fabien.K
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060920/6f5996a8/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: HashAlgorithm.cpp
Type: application/octet-stream
Size: 3499 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060920/6f5996a8/attachment.obj 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: HashRoutine.cpp
Type: application/octet-stream
Size: 1594 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060920/6f5996a8/attachment-0001.obj 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: HashAlgorithm.h
Type: application/octet-stream
Size: 889 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060920/6f5996a8/attachment-0002.obj 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: HashRoutine.h
Type: application/octet-stream
Size: 812 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060920/6f5996a8/attachment-0003.obj 
-------------- next part --------------
# charset configuration file for rainbowcrack 1.1 and later
# by Zhu Shuanglei <shuanglei at hotmail.com>

alpha                  = [ABCDEFGHIJKLMNOPQRSTUVWXYZ]
alpha-numeric          = [ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789]
alpha-numeric-oracle   = [ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789#$_]
alpha-numeric-symbol14 = [ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()-_+=]


all                    = [ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()-_+=~`[]{}|\:;"'<>,.?/]

numeric                = [0123456789]
loweralpha             = [abcdefghijklmnopqrstuvwxyz]
loweralpha-numeric     = [abcdefghijklmnopqrstuvwxyz0123456789]
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: generate.bat.txt
Url: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060920/6f5996a8/attachment.txt

Full-Disclosure is hosted and sponsored by Secunia.