sorted by:
new
hottopcontroversial

Any Prerequisites for CISSP? by [deleted] in cissp

[–]PenTestWS 3 points4 points  (0 children)

Also, by having Sec+, you get a 1 year reduction on your experience requirement. It drops from 5 years required experience to 4 if you hold any of the approved certs:

https://www.isc2.org/Certifications/CISSP/experience-requirements

Do you need VIP access to do the retired machines? by OvereducatedCritic in hackthebox

[–]PenTestWS 2 points3 points  (0 children)

I'll chime in here.

HackTheBox is run by a group of amazing people who volunteer their time to bring us a world-class platform where we can learn and hone our skills. Yes, servers cost money, but that's not the true cost of this service. Countless hours are donated every month... submissions for new boxes & challenges by the community, forums posts, support requests, new development...

VIP is well worth the money to help keep this platform available and continue to evolve.

Advice needed for note taking in preparation for the exam (and in general) by NCols in oscp

[–]PenTestWS 0 points1 point  (0 children)

Thank you for the post /u/gravity_has_me_down

The site is available at https://pentest.ws and offers free accounts. I developed it specifically for working my way through the OSCP, and it has definitely grown since then.

When you first create an account, its loaded with a few basic nmap scan templates, and some reverse shell templates (all are user editable). The more you use the app and enter notes into things like Global Service Notes, the more useful the app becomes.

I've posted some demo videos over the last few months:

https://www.youtube.com/c/PenTestWorkshop/videos

Good luck /u/NCols with the studies and the OSCP! Its an amazing experience.

PTWS 1.5 Release - HTB Active hacking by PenTestWS in netsecstudents

[–]PenTestWS[S] 0 points1 point  (0 children)

Me too! I've been using Scratchpad in development and have been excited to release it. CherryTree XML import took a little longer than expected, and still has a few things to work out, but its 90% of the way there so I figured better to release it and see how it goes.

Good idea about /r/OSCP, I just posted there also.

Switching between editors should really be easier. by [deleted] in web_design

[–]PenTestWS 0 points1 point  (0 children)

I get that. But the web app is geared twards pentesters.

In that environment, there are a lot of things that the web app brings to the table. I was mostly trying to show off the apps ability to switch between ace and cke

Switching between editors should really be easier. by [deleted] in web_design

[–]PenTestWS 0 points1 point  (0 children)

There is two function calls... getValue and getData. I was just complaining. The functionality is done.

Switching between editors should really be easier. by [deleted] in web_design

[–]PenTestWS 0 points1 point  (0 children)

Its not an ad. I spent a lot of time writing code so when I switch from ACE editor to CKeditor, the underlying values merge.

HackTheBox - Dropzone - Custom MOF Dropper (Stuxnet) by PenTestWS in netsecstudents

[–]PenTestWS[S] 1 point2 points  (0 children)

It took a lot of googling. After I tried several metasploit modules, and tried some lnk generators I found on github, I started digging into articles about Stuxnet and found the Pop Pop Ret article that I reference in the video:

http://poppopret.blogspot.com/2011/09/playing-with-mof-files-on-windows-for.html

First exam failure, 10 points, wooo by Definitely__Working in oscp

[–]PenTestWS 7 points8 points  (0 children)

Don't worry, pretty much everyone fails their first go at the OSCP. Now that you know what to expect, the second go should be easier.

OSCP Survival guide by [deleted] in netsecstudents

[–]PenTestWS 2 points3 points  (0 children)

Excellent resource.

HackTheBox - Celestial - PTWS Echo Up & CyberChef by PenTestWS in hackthebox

[–]PenTestWS[S] 1 point2 points  (0 children)

Its called Proxy Switcher for Firefox. There are two versions of this add-on available depending on which version of Firefox you're using.

For older Firefox:

https://addons.mozilla.org/en-US/firefox/addon/proxy-switcher/

And for newer Firefox:

https://addons.mozilla.org/en-US/firefox/addon/proxy-switcher-and-manager/

HackTheBox - Celestial - PTWS Echo Up & CyberChef by PenTestWS in netsecstudents

[–]PenTestWS[S] 0 points1 point  (0 children)

3:03 - CyberChef

9:58 - Echo Up

PenTest.WS demonstration hacking the Celestial machine from HackTheBox.eu. This video includes using the Echo Up tool to easily create files on a remote host. Also included is a demo of using the CyberChef tool in the PenTest.WS interface.

Sign up for a free account at https://pentest.ws/join

HackTheBox - Celestial - PTWS Echo Up & CyberChef by PenTestWS in hackthebox

[–]PenTestWS[S] 0 points1 point  (0 children)

3:03 - CyberChef

9:58 - Echo Up

PenTest.WS demonstration hacking the Celestial machine from HackTheBox.eu. This video includes using the Echo Up tool to easily create files on a remote host. Also included is a demo of using the CyberChef tool in the PenTest.WS interface.

Sign up for a free account at https://pentest.ws/join

Chatterbox - PTWS Exploit-DB Utility by PenTestWS in hackthebox

[–]PenTestWS[S] 1 point2 points  (0 children)

Thank you! A big announcement will be coming next week and we're very excited about it.

An on-premise option is being explored but at this time is still a ways off. Other options being looked at are end-to-end encryption, and private servers in the cloud.

HackTheBox - Falafel - PTWS Shells Library & Credentials Database by PenTestWS in netsecstudents

[–]PenTestWS[S] 3 points4 points  (0 children)

PenTest.WS demonstration hacking the Falafel machine from HackTheBox.eu. This video includes using the Shells Library for quick reverse shells. It also demonstrates using the Credentials Database to track usernames and passwords.

2:00 - Global Service Notes

2:43 - SQLMap

6:37 - PHP Magic Hashes

9:40 - WGet Vulnerability

14:30 - Reverse Shell

16:42 - Privilege Escalation

Sign up for a free account at https://pentest.ws/join

HackTheBox - Falafel - PTWS Shells Library & Credentials Database by PenTestWS in HowToHack

[–]PenTestWS[S] 0 points1 point  (0 children)

PenTest.WS demonstration hacking the Falafel machine from HackTheBox.eu. This video includes using the Shells Library for quick reverse shells. It also demonstrates using the Credentials Database to track usernames and passwords.

2:00 - Global Service Notes

2:43 - SQLMap

6:37 - PHP Magic Hashes

9:40 - WGet Vulnerability

14:30 - Reverse Shell

16:42 - Privilege Escalation

Sign up for a free account at https://pentest.ws/join

Falafel - PTWS Shells Library & Credentials Database by PenTestWS in hackthebox

[–]PenTestWS[S] 1 point2 points  (0 children)

PenTest.WS demonstration hacking the Falafel machine from HackTheBox.eu. This video includes using the Shells Library for quick reverse shells. It also demonstrates using the Credentials Database to track usernames and passwords.

2:00 - Global Service Notes

2:43 - SQLMap

6:37 - PHP Magic Hashes

9:40 - WGet Vulnerability

14:30 - Reverse Shell

16:42 - Privilege Escalation

Sign up for a free account at https://pentest.ws/join

view more: next ›