HELP! Need an ODBC Spy/Sniffer prog

Straker · Post by **Straker** » Thu Sep 28, 2006 11:08 pm

Does anyone know? Basically I have an app that is using a ODBC database connection, but when it connects, it passes the user id and password. I have been requested by a customer to convert the contents to a different format, but I cannot connect, only thru the original front-end which doesn't display the UID/PW and offers no export functionality.

So, I have been looking for an ODBC Spy or Sniffer program that will display the UID/PW when attempting to connect from the original client.

Thanks.

Tipperton · Post by **Tipperton** » Fri Sep 29, 2006 12:49 am

Do you know what format the original file is in?

If it's some common format, you might be able to get the file's password using something from either of these web sites:

http://www.elcomsoft.com
http://www.lostpassword.com

I also found a test drive of something called ODBC Sniffer by Mercury here:

http://www.csst-technologies.com/testdrv.htm

The page says it has some limitations but is still very useful.

Straker · Post by **Straker** » Fri Sep 29, 2006 1:31 am

[edited out] Oh yeah, and its encrypted.

So the only way is to somehow PEEK into memory when the application is performing its ODBC connection to see the connection string.

Tipperton · Post by **Tipperton** » Fri Sep 29, 2006 1:38 am

See my previous message, I added to it.

While searching I found that they are also called ODBC tracers. You might try searching for that too.

Straker · Post by **Straker** » Fri Sep 29, 2006 2:06 am

Thanks - I already downloaded it. but it doesn't work since it was written in 16-bit windows and for 16-bit ODBC.

Anyway, emergency over. I broke into it. Turns out it wasn't encrypted and I was able to change the rights for a user using a hex editor and voila!

Thanks again for your help.

Anyway, my question is still valid if anyone knows how to PEEK into memory to catch an ODBC connection string, this would be a great thing to know!