There are two configuration files, the aliases.conf file is used to map the driver name and the rules.conf file tells the application how to handle the error messages during the scan.
The tool has been tested and known to work with:
– Microsoft SQL Server 2000/2005
– Oracle 8/9/10/11
– IBM DB2 Universal Database
The tool is preconfigured for these drivers but does not ship with them, due to licensing issues. The links below can be used to find some of the drivers. They should all be copied to the jdbc directory.
As usual, documentation is sparse and in some cases non-existing. Let me know if you’re experiencing difficulties and I’ll make sure to help you out.
The post DBPwAudit: Database Password Auditing Tool appeared first on Penetration Testing.