Exams and Training in Infosec
Recently I have seen a trend of people posting things on LinkedIn along the lines of “I have achieved X which makes me Y” or “I’ve not bothered with exams because they are useless”. One post in-particular made me think, what exams are there? Are they needed? Are they useful? and is it possible to write a post which will make most people hate, and judge me? (I hope not!). In this post, I am going to look at a few of the options of training and certification in the industry as it stands, and such it may come across a tad ranty.
Studying for and taking the CREST CCT-ACE Exam
I Have recently studied for the CREST CCT-ACE Exam, I thought I would share some thoughts and my Pre-Exam revision Notes to help other people, as when looked I could not find much about it, much like the CPSA!
CVE-2016-0699 - Robbing Banks the Easy Way - Go in over the phonelines
Due to a logic flaw in Oracle's FlexCube Direct Banking application, it was possible to enumerate usernames, and then reset said user password, and transaction pin, granting full access to the victim user's account.
Missing Function Level Access Control - Avatier Password Station
The Password station interface does not disable user search functionality, instead it hides the icon allowing unauthenticated users to grab a list of all users able to reset their passwords and any other information stored along with this in AD, it is also possible to veiw the ldap search path.
Screenshots with Nmap
When scanning a large number of servers it is nice to have a screenshot handy for either quickly flicking through and identifying what's on the server (Page Titles dont always give a good representation of what can be found on the server!).
Authenticated SQL Injection In Users Ultra
A SQL Injection was discovered In the Users Ultra Wordpress Plugin (Upto version 1.4.95), in the user gallery section.
Fun With American Fuzzy Lop - A quick tutorial
I have recently been playing with AFL by Lcamtuf, a high performance fuzzer that is exceedingly efficient at finding problems in code when you either have or dont have the source code.
Connection Refeused with Hydra against TLS
Just a super quick one today. During a test I noticed some strange behaviour with the standard Hydra which ships with Kali (Version 8.1) when scanning sites with no SSLv3 support.
Studying for and taking the CREST CPSA Exam
I Have recently studied for and passed the CREST CPSA Exam, I though I would share some thoughts and my pre-exam revision Notes to help other people thinking of taking this new exam from crest as when looked I could not find much about it!. Note: The Format of the exam is changing very very soon, so this may not be of use to you.