Oracle Database Attacking Tool (ODAT) is an open-source penetration testing tool that troubleshoots the security of Oracle Databases Remotely.

Usage Examples:

  • An Oracle database is being monitored remotely, and you need to discover appropriate SIDs and credentials to access it.
  • You already have a legitimate Oracle account on a database and wish to raise your privileges to DBA or SYSDBA.
  • You have access to an Oracle account, and wish to run system commands (for example, reverse shell) on the operating system that hosts the database.\

Tested on Oracle Database 10g, 11g, 12c, 18c, and 19c.

The intended use for the tool is strictly educational and should not be used for any other purpose.

Download Link: https://github.com/quentinhardy/odat

Leave a Reply