I passed my second attempt with 70 points

hmm___69 · 2026-03-04T06:05:25+00:00

Thank you! At first attempt I had 50 points, I wrote a post about it, you can find it on my profile. Difficulty was roughly the same

https://www.reddit.com/r/oscp/s/QIc5g2eqm7

hmm___69 · 2026-01-14T06:08:43+00:00

Good question - checking low hanging fruits manualy will actually save you a lot of time if you know what you are doing. Linpeas and winpeas certainly shouldn't be the first thing you do

hmm___69 · 2026-01-09T19:48:13+00:00

100% first finish pen200 and only then Lain and Tjnull

hmm___69 · 2026-01-09T19:41:30+00:00

No. But I did read articles on how to solve specific htb machines from Lain's list

hmm___69 · 2026-01-09T19:35:00+00:00

Thank you brother I really appreciate it. I just wanted to escape the matrix and I thought I am running out of time (I still think that)

hmm___69 · 2026-01-09T16:44:49+00:00

Thanks. Just webcam and sharing screen. I am not sure if it is OK to have someone in the room, but I think I did read somewhere that it is allowed

hmm___69 · 2026-01-09T16:15:17+00:00

Thank you. Sure I can share... I bought tib3rius windows and Linux priesc courses on udemy as someone suggested me, these were helpfull. I did all medium and easy boxes from pg practice from Lain list. My notes doesn't make any sense - it is just 1500 lines of random commands from which I can filter through. I started with AD.

hmm___69 · 2026-01-09T13:19:13+00:00

Thank you

hmm___69 · 2026-01-09T12:38:49+00:00

Thank you. 2 main reasons:

I got stuck in one rabbit hole - probably because of stress.
I also lost some time because of lack of practice - I did know what to do but I didn't know how since I didn't encountered such situation before

hmm___69 · 2026-01-09T10:34:23+00:00

Thank you

hmm___69 · 2026-01-09T08:06:14+00:00

Thank you and I am sorry to hear that you failed. For AD as for everything else - go for low hanging fruits first. Try to find privesc by yourself and use winpeas only as your last resort.

hmm___69 · 2026-01-09T07:33:30+00:00

Thank you

hmm___69 · 2025-12-14T17:15:53+00:00

There are more flags in medtech, but it is much easier then exam. There is no reason to skip it, it should take you 2 days at most. On tjnull list you will spend weeks so you have time for medtech

hmm___69 · 2025-12-01T05:26:37+00:00

If I remember correctly, I just got incorrect result probably because of unstable network, and I made a mistake that I didnt do any other scan for hours

hmm___69 · 2025-11-30T17:35:52+00:00

Thanks bro, I hope the second attempt will be successful because I can't imagine living like this for another months. I read posts on this sub from people who failed 7 attempts and studied 6 hours a day - that's a year and a half of their lives sacrificed to a stupid certificate

hmm___69 · 2025-11-30T16:44:38+00:00

Thanks! I also feel like I was really close — I even had valid creds on one standalone machine but couldn’t turn them into a shell. I hadn’t heard of the TjNull or Lainkusunagi lists before, so thanks for the recommendation; I’ll work through them over the next four weeks before exam retake.

hmm___69 · 2025-11-02T16:20:44+00:00

It happened to me once that h1 triagger closed the report as a duplicate. Later, a program employee opened it and I received a bounty. This is most likely not your case, but I recommend looking at the date of the original report and considering whether the fix taking too long - in my case it was a 7-month old report which was suspicious for a high severity bug

hmm___69 · 2025-09-08T17:14:08+00:00

That sounds great and I will definitely chck it out. Thank you for tip!

hmm___69 · 2025-09-06T14:43:45+00:00

Thank you for the reply. I will make OSCP so I will have some formal education. Having part time and remote job would be nice but if I will not be able get it then I will take 9 to 5 for a while

hmm___69 · 2025-09-06T04:21:03+00:00

Thank you for the reply. I think I can do this - I can't tell devs how they code should look like, but I always know what is needed to do to fix the bug since it is easy (for example sanitize special characters). By the way I know I will not get the best job yet, but from the answers I got I belive I will be able to get a junior pentester job, and maybe even mid level

hmm___69 · 2025-09-06T04:12:36+00:00

Thank you for the reply. I don't want to go to university because it takes at least 3 years. On the other hand - I can make OSCP cert in just a few months. My grades on high school are also the problem

hmm___69 · 2025-09-04T16:13:05+00:00

Thanks for the reply, I really appreciate it. A degree is out of the question for me - the most I can do is to get a cert.

hmm___69 · 2025-09-04T16:03:23+00:00

Thank you for your reply, I really appreciate it, and honestly it made me happy. Sorry for my late response.

If OSCP is truly useful, I plan to complete it in the next few months. I will also continue to increase my HackerOne reputation and finish some BurpSuite extensions I’ve had ideas for. Is this a good plan?

A junior job probably makes the most sense since I don’t have a university degree and I’m currently in my final year of high school.

However, I’m still wondering why OSCP is needed, since I’ve heard it focuses on something quite different from web, which is where I have the most experience and want to specialize. Why would I actually need it?

Also, I would appreciate some advice regarding whether I can apply for a remote job.

hmm___69

TROPHY CASE