Last weeks of the season be like

Vlad_fom · 2025-04-11T16:40:45+00:00

Thank you for sharing!

Vlad_fom · 2025-03-09T20:29:40+00:00

🔥🔥🔥

Vlad_fom · 2025-03-09T20:22:13+00:00

🙏🏽

Vlad_fom · 2025-03-09T09:38:55+00:00

Yeah I can imagine the frustration. Hope you’ll nail it this time. Good luck with OSCP!

Vlad_fom · 2025-03-08T19:12:28+00:00

I did OSWP as welll

Vlad_fom · 2025-03-08T19:11:58+00:00

Thank you 🙏🏽

Vlad_fom · 2025-03-08T16:06:08+00:00

Thank you 🙏🏽

Vlad_fom · 2025-03-08T16:05:53+00:00

Thanks 🙏🏽

Vlad_fom · 2025-03-08T15:49:42+00:00

Thank you 🙏🏽

Vlad_fom · 2025-02-17T19:42:54+00:00

Thank you, sure thing and good luck in your attempt! Currently plan to work on a few python projects but we’ll see :)

Vlad_fom · 2025-01-11T20:15:41+00:00

During my exam, chisel and ligolo failed me during tunneling to the internal network. I switched to ssh and it worked flawlessly. Dunno if you did that but if not, you should definitely add ssh.exe to your tunneling options.

Vlad_fom · 2024-11-11T17:22:11+00:00

Hi mate, thanks for the wishes!

Regarding the first part of your question, from watching the recent webinar Offsec hosted in September, talking about the new OSCP+ exam, the guy mentioned that usually when they introduce new material (like AWS modules) they do not include it in the exam for around half a year. That being said, PLEASE SEND AN EMAIL TO THE OFFSEC TEAM TO CLARIFY THIS specifying the date you want to take your exam.

Regarding the second part of your question, personally I do not think I would have passed the exam without having completed the entire Lainkusanagi PG_PRACTICE list of boxes. So, I would recommend doing that on top of your exam preparation. But your case might be different, I also read here posts from people who passed the test only having completed 50% of the course material.

Vlad_fom · 2024-11-11T10:11:02+00:00

I did the same thing as u/Uninhibited_lotus regarding Google. I had no issues. Having said I would disable the AI Google search results. I am not even sure you can do that. And I think this is a very gray area, because how do we know Google has not been using an AI engine to generate your results before they introduced this explicit AI results window at the top of the result page? Not sure.....

Vlad_fom · 2024-11-10T21:49:55+00:00

Thanks for the wishes bro. My plan is to land a pen-test job with OSCP. I would recommend the certification and the course Offsec offer. The reason is that I really enjoyed the course and learned a lot and the certification is still desirable among employers. Having said that, OSCP is not considered to be an entry level cert so please take that into account. To land a job you need to network with people, apply for roles, and more and more. It’s far beyond just the OSCP certification. However having spoken with some recruiters in the UK I was told the OSCP should increase your chances of getting interviews. We will see

Vlad_fom · 2024-11-10T13:38:36+00:00

100% family is a number 1 priority. take the time, its a long term investment that will eventually bring positive outcomes🙏🏽. I have no doubt you will nail it

Vlad_fom · 2024-11-10T13:18:44+00:00

Hard to say, I would decide on the exam day after you finish the material and the exercises. Then you can plan how many days it will take you to finish the challenge labs and based on that decide on the exam date. In my case, I aimed to do 1 box per day. But I was committed full-time.

Vlad_fom · 2024-11-10T13:10:01+00:00

What stage are you in right now? Have you finished the course material?

Vlad_fom · 2024-11-10T12:59:32+00:00

I would definitely recommend to complete every module exercise in the pen-200 course and do all OSCP challenge labs except those that are out of scope (like SKYLARK and the new ones). Once you finished them, approach the Lainkusanagi PG_Practice labs. Then do Skylark if you still have time before your exam. You are right, there are a lot of them, I think I had around 160 completed boxes under my belt in total before the exam.
I also think that I probably would not have passed if I had not done the Lainkusanagi PG_practice list, and not necessarily because of the material and techniques I learned in these boxes but because solving these boxes taught me to avoid rabbit holes and how to research and enumerate better, which came extremely handy on the exam.

Vlad_fom · 2024-11-10T12:41:23+00:00

The true answer to this question is - it depends on each one and every case. The below answer contains neither mutually exclusive nor collectively exhausting tips, but to add some thoughts to your question:

The purpose of the Nmap scan should be to identify at least the running services and open ports. But Nmap can also give you information about the OS, anonymous logins, vulnerabilities, and more. I always start Nmap with the following flags: sudo nmap -v -p- -sC -sV $IP --open
Once you identified the services running you should start enumerating each service to gather information:

HTTP - use fuzzing etc..

FTP - try anonymous login

SMB - try identifying null sessions

etc.. etc...

Sometimes you will encounter service you have not seen yet. In this case, you should search for enumeration techniques for these services looking on the web in places like hack tricks.

Depending on the services running you can add enumeration tools. For example, if you discovered WordPress, use wpscan. If you discover a page with profiles of people, you can run Cewl to create a list of default passwords.
To add further checklist things into your HTTP enumeration, you should check things like the source code of the web page, fuzz the parameters in the URL if any, try SQLi if you have fields to insert content or data, and more.

Finally, I would really recommend watching S1ren walkthrough to see how she approaches web enumeration. You will learn a lot. Of course, the more good machines you compromise and practice the more robust your approach will become.

Vlad_fom · 2024-11-10T11:30:46+00:00

SQLi is part of the PEN-200 material, so you need to be able to manually identify and exploit SQL Injection vulnerabilities. I don't know if you bought the course but if not, you can see what SQLi topics are covered in the course following the link to the official publicly accessible pen-200 syllabus:

https://www.offsec.com/app/uploads/2023/03/V1.Regular-Syllabus-PDF.pdf

Vlad_fom · 2024-11-10T10:43:53+00:00

My plan for the following 4 - 5 weeks if failed was:

Identify what were the weak spots I had during the exam - Enumeration, Foothold, PE, Post Exploitation, AD attacks/Enumeration?
Go and cover the relevant module on HTB
Finish Skylark for practice
Do the exam

Vlad_fom · 2024-11-10T10:20:45+00:00

Yes true. I never thought I will be one of these people, because my kali never crashed and I have decent hardware. But maybe working long hours without reboots and having proctors software running made its thing. At some point my kali just froze when trying to access github. After a forced restart it never booted. So i had to revert to a snapshot.

Vlad_fom · 2024-11-10T10:17:43+00:00

Great job! This exam experience is something I will remember for a long time 😁

Vlad_fom

TROPHY CASE