Below you will find a list of the different demo scripts used during the DOAG training day 2017 Oracle 12c Release 2 Datenbank-Sicherheit in a Nutshell. In general the script do need a SCOTT or a HR demo schema. Some of the scripts may have more requirements eg. Kerberos configuration, Oracle Enterprise User Security etc. The scripts are available free for anyone to use. I do not accept any responsibility for any damage, errors or anything whatsoever caused by running or using these scripts. The scripts have been tested thoroughly but as there are many platforms, Oracle versions and possible configurations, it does not mean that they will work for you when they work for me. Please check the file header for further information on the scripts, references etc before running them especially on production system.
| Script | Description |
|---|---|
 01_authentication.sql |
Show authentication information of the connected user and its USERENV context |
| 02_privileges.sql |
Database privileges analysis demo |
| 03_vpd.sql |
Virtual Private Database demo with default and column masking. |
| 04_audit.sql |
Unified audit demo script |
| 05_redaction.sql |
Oracle Data Redaction demo script |
| 06_tsdp_redact.sql |
Transparent Sensitive Data Protection and Data Redaction demo |
| 07_tsdp_audit.sql |
Transparent Sensitive Data Protection and Unified Audit demo |
| aui.sql |
Script to show authentication information of the connected user and from its USERENV context. |
| hip.sql |
List init.ora parameter including hidden parameters. |
| create_password_hash.sql |
Calculate Oracle DES based password hash from username and password. |
| verify_user_password.sql |
Wrapper script to check if a user has a weak DES based password. Passwords will be displayed. |
| verify_user_password_no.sql |
Wrapper script to check if a user has a weak DES based password. Passwords will not be displayed |
| verify_alluser_passwords.sql |
Wrapper script to check if any user in sys.user$ has a weak DES based password. Passwords will be displayed. |
| verify_alluser_passwords_no.sql |
Wrapper script to check if any user in sys.user$ has a weak DES based password. Passwords will not be displayed. |
| verify_passwords.sql |
Check if user in sys.user$ has a weak DES based password |
| verify_password_hash.sql |
Check if user has a weak password |