👾
My Cybersecurity & Coding Journey
  • Zero to Hero
  • Buy me a Coffee/Donate
  • My LinkedIn Profile
  • Walkthroughs
    • Training Program
    • Cybersecurity Concepts
      • TCM's Pentesting Playlist
      • Buffer Overflow
      • Pentest Tools Library
      • Basic Linux
      • Scripting
    • Useful Links Archive
    • Machines & Practice
      • Over the wire - Bandit
      • Vulnhub Machines
        • Kioptrix 1.1
      • TryHackMe
        • THM - Vulnersity
    • Capture the Flags (CTF)
      • HTB Cyber Santa CTF 2021
        • Revision of Challenges
      • TryHackMe - Advent of Cyber
        • Day 7 : Migration without Security
        • Day 8 : Santa's Special Bag of Toys (John Hammond Special)
        • Day 9 : Networking - Where is all this data going
        • Day 10 & 11 & 12 : Networking - Nmap & MsSQL & NFS (Network File System)
  • Pentest Playbook
    • Reconnaissance
      • Host Scanning
      • Subdomain Enum
      • Network Scanning
      • Packet Analysis
    • Enumeration
      • Ports
      • Files
      • Web Attacks
      • Cloud Attacks
        • General Info
        • AWS
        • Azure
        • GCP
    • Exploitation
      • Payloads
    • Post-Exploitation
      • Windows Privilege Escalation
      • Linux Privilege Escalation
      • Pivoting
  • Concepts
    • Networking Fundamentals
    • Web Infrastructure
    • Malware & Antivirus Evasion
    • Active Directory
  • Incident Response Playbook
    • Network Traffic
    • Incident Response Process
    • Vulnerability Response Playbook
  • Programming
    • Guide to Python 3
      • Web Scraping
    • Codecademy - JavaScript
      • Memory Allocation
      • HTTP Requests
      • Async Await
      • JavaScript Asynchronous Ops - Promises
      • Intermediate JavaScript Basics - Classes to Modules
      • JS Projects Archive
    • HackerRank
      • HackerRank - 30 Days Python Challenge
      • HackerRank - 10 Days JavaScript Challenge
        • Day 5 : Arrow Functions
        • Day 4 : Classes
        • Day 5 : Inheritance
      • Bash (Linux Shell)
    • Codewars
    • SQL
    • C
Powered by GitBook
On this page
  1. Walkthroughs

Training Program

This page documents my main approach for OSCP preparation, meaning 2 to 6 months before registering for PWK. The three-pronged approach would be: Coding/Scripting + Learning Theory + Machines Practice

Guides for OSCP Prep

TJNULL Comprehensive Links - https://www.netsecfocus.com/oscp/2021/05/06/The_Journey_to_Try_Harder-_TJnull-s_Preparation_Guide_for_PEN-200_PWK_OSCP_2.0.html

Scripting or Programming Languages

Focus on Python & Bash scripting (Javascript to help web exploits for freetime)

  • For learning Python3/Javascript - https://www.codecademy.com/learn/paths/full-stack-engineer-career-path

  • For practicing Python 3 or Bash or Java Script - https://www.hackerrank.com/dashboard

  • SQL Language - Codecademy

Machines to Do

These sites with machines or challenges are listed from what an absolute beginner should start with, to the end, right before signing up for the PWK labs. An estimated total of 300 to 400 hours cracking machines along this route is a good target before attempting PWK labs, from what I've gathered from other cybersec community contributors like TCM, TJnull and others.

  • Over the wire (Linux system)

  • TryHackme (Beginner)

  • Vulnhub (Huge numbers of machines with walkthroughs)

  • root-me.org

  • HackTheBox + IppSec videos + Walkthroughs (Definitely not easy, even for those "easy" difficulties)

  • TJNulls HTB list to complete (Absolute essential to go through the boxes in this list)

  • PWK Proving Grounds (Practice and Play)

  • OSCP PWK Labs 90 days (Final)

Tackling the OSCP PWK Course + Labs

  • Do entire PDF (800pages) + exercises (2 weeks to 1 month)

  • Lab writeup (free 5 points)

  • Do writeup for every machine you root

  • AD machines - must be good with windows

PenTesting Categories

4 topics: Enumeration, Initial exploitation, Privilege Escalation (Windows & Linux), Buffer Overflow

Enumeration

  1. Enumerate every gap ( etc. go buster on found directory leads to new directories --> recursive gobuster)

  2. enumerate in background only

  3. Check version service + vulnerability

    • ExploitDB, Github, Searchsploit, Blogs, google

    • Source code, netcat, enumeration tools

Common Exploits - Web Exploits

  1. SQL Injection

  2. Directory Transversal

  3. LFI/RFI

Reverse shells

  1. PayloadAlltheThings

  2. Pentest Monkey

  3. Nishang

  4. MSFVenom

Privilege Escalation (Train for Windows and Linux)

  • Elevate from unprivileged to priv users

  • start off enumeration again: scripts to test possible weaknesses, kernel exploits

  • know how to run scripts and read output ***

Buffer Overflow (25 mins to crack - free 25 points)

  • Get familiar with immunity debugger

  • Process to get ingrained (6-10 steps)***

OSCP Exam tips (On the day itself)

  • start with buffer overflow, mass scan the rest

  • keep good notes (cherrytree or obsidian)

  • take breaks

  • enumerate 100%

  • backup notes and machine in case VM breaks

Writing reports

  • Repo of public sample reports

https://github.com/juliocesarfort/public-pentesting-reports

PreviousZero to HeroNextCybersecurity Concepts

Last updated 2 years ago

  • Guides for OSCP Prep
  • Scripting or Programming Languages
  • Machines to Do
  • Tackling the OSCP PWK Course + Labs
  • PenTesting Categories
  • OSCP Exam tips (On the day itself)
Page cover image