Cybersecurity Concepts
All credits to TJNull --> https://www.netsecfocus.com/oscp/2021/05/06/The_Journey_to_Try_Harder-_TJnull-s_Preparation_Guide_for_PEN-200_PWK_OSCP_2.0.html#section-1-general-course-information
Chapters to study
Get comfortable taking notes of EVERYTHING, screenshots, scans, outputs --> Onenote, Obsidian
Use exam reporting templetes by WhoisFlynn & Julio's repo of public pentest report samples
Mainly kali documentation reads, troubleshooting, installing
Over the wire Bandit, Hackrank linux shell, Cmdchallenge
Ncat - swiss army knife used EVERYDAY**
Socat
Powercat - windows version of netcat, The script can be downloaded onto a Windows target to transfer files, return a shell, or create payloads that we can call back from our target. https://github.com/besimorhino/powercat
TCPDump: Command line base Network Analysis Tool. Very useful and good to know if you are on a system that does not have a GUI. Here is a good cheat sheet I used for tcpdump when I needed to troubleshoot my exploits: https://www.andreafortuna.org/technology/networking/tcpdump-a-simple-cheatsheet/
Daniel Miessler TCPDump Guide: https://danielmiessler.com/study/tcpdump/
Powershell Scripting (underthewire.tech)
Wireshark Training
GUI based Network Analysis tool. There a lot of free PCAP samples online that you can use to understand how Wireshark works. Be careful with downloading some of these PCAP files because they may have malware in them; make sure you read where the PCAP is from before playing :D
PCAP Samples:
Netresec: https://www.netresec.com/?page=pcapfiles
Malware Traffic Analysis: https://www.malware-traffic-analysis.net/
Packettotal (Just like virustotal but for PCAP Analysis): https://packettotal.com/
The bash Guide: A good guide to get you into the bash scripting https://guide.bash.academy/
Resources to learn more about Bash Scripting: Tutorials Point: https://www.tutorialspoint.com/unix/shell_scripting.htm
(Use hackerrank to practice)
Last updated
