Oracle 12c uses the "12a" type, Spiderlabs posted sample cracking code in python on github. By default Oracle also stores the S: hash as well which is already supported, and would be far easier to crack. A network capture might only get the T: type though.
https://www.trustwave.com/Resources/Spid...rd-hashes/
https://github.com/SpiderLabs/oracle_pwd_tools
https://www.trustwave.com/Resources/Spid...rd-hashes/
https://github.com/SpiderLabs/oracle_pwd_tools