Here are some additional Infos for ngOrca.

Info

I started building this even when there are already a few programs doing the same task because a  while ago, when i  needed to recover some lost oracle passwords ;)  ,  there was no Open Source solution for this. Maybe this tool is not the best solution but it worked for me and maybe can help you too.

An Assessment of the Oracle Password Hashing Algorithm :  http://www.ecuoug.org/papers/OraclePasswordAlgorithm.pdf

Thats the paper is where i got the information about how the algorithm works.

Usage

First compile the Sourcecode with g++.

g++ -o ng-orca ng-orca.cpp -lcrypto -pthread -O3 

Here you link against the crypto and the pthread libary because ng-orca uses the openssl DES implementation, therefore you need the openssl development files installed. The -O3 switch just enables compiler optimization.

./ng-orca   -f <hashfile> [options] 

 

    -f <hashfile> the Hashfile has to contain the userhashes and usernames in the format username:password each combination seperated with a new line.

    -l <passwordlength> specifies the length of the password, the default is 3

    -s <startpasswordnumber> ng-orca stores the password number for started sessions in the  file with this param you can enter it manually

    -r  when used with this param ng-orca restores a previous started session  

    -o <logfile> specifies the logfile where ng-orca logs events too, the default value is log.txt 

    -c <charsetnumber>  1: for alpha only  --> [ABCDEFGHIJKLMNOPQRSTUVWXYZ] *

                                           2: for numbers only  --> [0123456789]

                                           3: for alphanumerical --> [ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789]

                                           4: for apha + numbers + special signs --> [ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.:,;-_#'+?=()/&%$§\"!<>|\\}][{~@]

    the default charset is 3.  * because oracle uses only uppercase passwords we dont need a lower case charset