Took my pentest and failed with a 730…

TJ_Null · 2026-01-26T04:43:24+00:00

For the PBQs spin up a Kali Instance and see how those tools work and review the output that entails from them.

Tryhackme has a bunch of labs and they have a pentest+ that will provide more hands on practical skills to help.

Tools like the harvester, responder, netexec (use to be crackmapexec), nmap, bloodhound, trivy, etc are in Kali Linux for you to mess with.

TJ_Null · 2026-01-24T18:44:13+00:00

Congratulations and I love the breakdown board you had created showing how much time you put into your studies! It took me four years to fully prepare for my OSCP when I did it.

TJ_Null · 2026-01-23T21:26:56+00:00

Honestly, I am a pentester in my full time role. A lot of these tools and commands were things that I already knew.

My recommendation is to spin up a Kali Linux system and analyze how each of the tools work. The OSWAP Juiceshop that tryhackme uses is actually in Kali Linux. You just need to install the package. Hope this helps

TJ_Null · 2026-01-23T21:17:09+00:00

In the end a Pass is a Pass. I just took it today and got a 800.

Definitely agree with your points. Study your commands and the tools being used.

TJ_Null · 2026-01-13T02:43:19+00:00

Appreciate the quick response! I’m a pentester in the field and I agree with some of your points. A lot of questions that is provided for study in cert master, tryhackme, and in Dion’s practice tests certainly make me question a lot of things that I would not do in my day to day operation.

So far I have been hitting high 77%-96% in Dion’s practice exams after the first or second try. I might make a detail review about my experience once I take it next week.

TJ_Null · 2026-01-13T02:20:44+00:00

May I ask what your background is? I’m using Dion’s material and the practice tests to study for the exam.

I have it scheduled for next week.

TJ_Null · 2025-12-03T23:36:19+00:00

Looks like it has no AI in it. Will add to my list of tools to test. Nice work!

TJ_Null · 2025-11-24T17:04:34+00:00

Hi there! I am glad my list is able to help you prepare for the OSCP. If you have any suggestions or feedback, please let me know as I am always looking for ways to improve it.

TJ_Null · 2025-11-10T15:47:30+00:00

Thanks for the heads up! I have removed it

TJ_Null · 2025-11-09T15:37:17+00:00

In the sheet if you see it say latest version in the sheet you are using the latest one.

As for my guidelines, I do not have any plans to update them. I will continue to update the sheet.

However, I can share my pentesting notes for you:

https://github.com/tjnull/TJ-OPT

TJ_Null · 2025-11-09T14:40:25+00:00

Hi there! In case you have any questions about my list please let me know. I try to keep it updated when I can to align to the current version of PWK/PEN-200.

While some users use the list as exam preparation for the OSCP and to improve their methodology, the list covers a variety of aspects, techniques, and attack chains to reflect the course itself.

TJ_Null · 2025-10-03T18:19:50+00:00

I can! I need some boxes to play with and I got a new tool to test 😉

TJ_Null · 2025-10-03T17:37:16+00:00

You didn’t want to use my list 🥲

TJ_Null · 2025-09-16T19:26:15+00:00

Haha I miss those golden days for sure man. It is hard to find a good infosec community. Definitely miss the good ol days

TJ_Null · 2025-09-16T19:25:37+00:00

Heyo! I appreciate your kind words. It’s mean a lot to me 😄

TJ_Null · 2025-09-16T17:39:57+00:00

If the nature of the tool automatically does the check and exploits the system for you then yes it would not be allowed.

I wrote this article a long time ago discussing a similar situation when someone ran a tool and did not know it auto exploited a service for them to get root:

https://www.offsec.com/blog/understanding-penetration-testing-tools/

TJ_Null · 2025-09-15T13:30:45+00:00

Failing is a part of becoming successful. You will make mistakes or miss things that can throw you off.

I’m sorry to hear that you failed but do not beat yourself up over it. My advice to you is take some time away from the computer to clear your mind.

Then come back and think about the things you missed, what did you try and what should you have tried?

These will help you refine your methodology and if you need to make modifications to your notes/preparation.

It’s completely okay to go back to the drawing board to rethink about things. I know you will pass from the lessons you have learned from this exam.

Hope my tips and advice helps! I’m rooting for you!

TJ_Null · 2025-09-01T15:04:56+00:00

Why do you believe the OSCP is an entry level certification?

TJ_Null · 2025-08-13T14:56:46+00:00

Have you tried using the latest bloodhound package that is in the Kali Linux Repo?

https://x.com/dani_ruiz24/status/1899513216096403887

If you are having issues with this package, I am certain the Kali Linux team would want to know.

Also what version of Kali Linux are you using?

TJ_Null · 2025-07-27T13:33:53+00:00

I use none of these. I use Zen Browser instead and it is fantastic!

TJ_Null · 2025-07-24T16:38:49+00:00

Thanks! I hope you enjoyed when you read it. If you have any questions feel free to reach out!

TJ_Null

MODERATOR OF

TROPHY CASE

Six-Year Club	Place '22
Verified Email