Explore deep-dive penetration testing techniques using the Oracle Application Framework (OAF) as a case study in this conference talk from AppSecUSA 2014. Learn why traditional black-box testing often fails to uncover critical vulnerabilities in complex enterprise applications, and discover advanced methods such as static reverse engineering, mock environment creation, and dynamic monitoring. Gain insights into how a major vulnerability in OAF went undetected for years despite its widespread use in Oracle's eBusiness Suite and other organizations. Follow along with live demonstrations and understand the importance of comprehensive application testing to protect against dedicated attackers who dig beyond the surface-level user interface.