Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
When conducting a penetration test on databases, one of the best courses of action when doing reconnaissance work is to do the following:
perform ping sweeps to identify all databases
just scan for the default port for Oracle and SQL
Identify databases by doing nmap scans to gather banner information
It is good practice to scan higher ports to possibly identify databases running on these ports (7777, 7778, and 8888). Although blocked at the firewall on most networks, there could be valuable information internally.
ANY port scan will yield successful results if the port range is wide enough to include the open ports. Listing a specific port range as optimal is pointless . If the security administrator chooses a port outside of your scan range, you won't find the resource.
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.