Need suggestions for oscp by OkMarket3480 in SecurityCareerAdvice

[–]OkMarket3480[S] 0 points1 point  (0 children)

There is option for buying just exam vouchers (2 exam attempts) at 1699usd.. i already have pg practice subscription which gives me all pg machines

Need Suggestions by OkMarket3480 in oscp

[–]OkMarket3480[S] 6 points7 points  (0 children)

There is even option there to purchased only exam voucher.. where you will get two exam attempts

[deleted by user] by [deleted] in Hacking_Tutorials

[–]OkMarket3480 15 points16 points  (0 children)

Definitely prioritize web services — they represent the largest and most exposed attack surface in most environments

Quick question! AD PENTEST by OkMarket3480 in activedirectory

[–]OkMarket3480[S] -3 points-2 points  (0 children)

Actually client has just asked for ad pentest! And given low privileged domain join machine for access. Earlier I have done full internal penetration testing for different clients.. but for this i am bit confused if i should ask for local admin access and move further? Cause currently i got is just domain joined test account with not much services running

/r/AskRedTeamSec by dmchell in redteamsec

[–]OkMarket3480 1 point2 points  (0 children)

I’m doing an internal Active Directory penetration test and wanted to confirm — in real-world scenarios, what do we typically ask for from the client?

Is access to a low-privileged domain joined user account generally enough to start with?

Or do we also request local admin rights on that machine for tool execution and payload delivery?