OSCP Prep- 2 Weeks In

So it's been just about 2 weeks since I registered for my training for the OSCP. My training won't start until July 13th, but in preparation for that training, I've decided to do some pre-training to get myself ready. The preparation phase so far: PentesterLab (https://pentesterlab.com/)- Paid subscription OverTheWire WarGames (http://overthewire.org/wargames/)- Free CTF like challenges … Continue reading OSCP Prep- 2 Weeks In

Bypassing Siebel Authentication

Note: This vulnerability was disclosed to Oracle initially in early September 2016 and followed up on subsequently. My last communication with Oracle regarding this matter was on November 30th, 2016. Here is the discussion (with sensitive information removed): Oracle: "We have identified an existing patch to fix the issue" Me: "Thank you for the update. Do … Continue reading Bypassing Siebel Authentication