Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The Oracle Database as a Service module is designed to detect misconfigurations, vulnerabilities, or fingerprint the Oracle Database software. It targets instances of Oracle Database that are deployed as a service.
This module has an informative severity level, meaning it provides valuable information without posing an immediate threat.
This module was authored by pussycat0x.
The impact of this module depends on the specific misconfiguration, vulnerability, or software fingerprint it detects. It can help identify potential security weaknesses or provide insights into the Oracle Database deployment.
The Oracle Database as a Service module utilizes HTTP request templates and matching conditions to perform its scanning. It sends HTTP requests to the target and evaluates the responses based on predefined conditions.
One example of an HTTP request template used by this module is:
GET / HTTP/1.1
Host: [target]
The module uses matching conditions to determine if the target matches the expected criteria. For example, it checks if the response body contains the HTML title tag "<title>Oracle Database as a Service</title>
" and if the HTTP status code is 200.
By analyzing the responses and matching conditions, the module can identify misconfigurations, vulnerabilities, or fingerprint the Oracle Database software.