Products
Repscan 2.5
Hedgehog Enterprise
Checkpwd (free)
Services
Oracle Audit / Hardening
Security Training
Consulting
Information
Oracle Security Blog
Published Alerts
Upcoming Alerts
Patch Information
Whitepaper
Presentations
Oracle Fact Sheets
Exploits
Tutorials
Videos
Scripts
News & Events
Events
News
Company
Blog
Contact
People
Partner
Impressum
Sitemap
Search
|
Repscan™ 2.5
Repscan™ 2.5 Features
Oracle Repscan is the most comprehensive security scanner for Oracle databases. With more than 3000 security checks Repscan is able to detect database modifications, unsecure system configurations, weak and default passwords (database/APEX/OID/OVS passwords) and furthermore even unsecure PL/SQL code and forensic traces:
Here are some of the (unique) features of Repscan
- Graphical User Interface and/or commandline interface
- Innovative password plugin architecture (e.g. write your own plugins for passwords of inhouse applications)
- Find unsecure PLSQL-Code (SQL Injections, hardcoded passwords, deprecated functions) [Sample]
- Find weak or default passwords from database users / OID / APEX2.0-3.2 / HTMLDB 1.4-1.6 / OVS [Sample]
- Check more than 115 (yes more than 115) Oracle tables for password information [Sample]
- Special report for pentester to reduce the time to analyze 3rd party applications (find encryption, sensitive information, ...)
- SHA2 Checksums of database objects (find modifications of database dictionary, e.g. Oracle Rootkits)
- SHA2 Checksums of table data (find modifications of privilege and user tables)
- Find missing patches (Get a list of missing patches) [Sample]
- Identify Oracle components, products and 3rd-party-products
- Find forensic traces from common security and hacker tools
- Small XML reports (can be imported into a database or viewed via a browser) [Sample]
- Integration with Hegdehog - the award-winning leading Database Activity Monitoring and Intrusion Prevention Solution from Sentrigo
Quick, Easy Installation Repscan 2.5 is easy to install and to configure. Import database connections from an already existing tnsnames.ora or specify the database(s) manually.
Usability Repscan is designed to scan of simple, single database installations as well as large amount (100+) of databases. Everything with a single command. Easy to script.
Extensibility Write your own database rules (SQL and PL/SQL). Encrypt the rules to protect your intellectual property.
Write your own password plugins (in C++) for inhouse applications. Sample code will be provided
Video
Download
You can download a free trial version of Repscan 2.5 from our distributor Sentrigo.
© 2005-2009 by Red-Database-Security GmbH - last update 2-jul-2009
|
Repscan 2.5 for Windows - System Requirements
- Windows 2000, XP, Vista, Vista 64, 2003, 2008
- Oracle version, 8.1.7 or later
- Database access via OCI
- .NET 2.0
- 512 MB free RAM
- 250 MB free disk space
- MS Internet Explorer 6.0 or later, Mozilla Firefox, Opera, Safari
|