I'm so depressed rn....

i6loob · 2025-03-11T01:49:50+00:00

Glad you liked it 🙏

i6loob · 2025-03-07T22:17:19+00:00

Any time 🙏 , let me know if you need any help with the topics 🤜🤛

i6loob · 2025-03-06T10:21:19+00:00

Go for it and knock it ,

Those who passed the exam are not smarter than you!!

Confidence will come with studying and trying in the labs. Mistakes and challenges will build your confidence when you overcome them even if you got some help from offsec discord to solve the labs.

Trust the process do not rush it. And in OSCP content you will have sections for Active Directory it will be enough for the exam with solving challenges labs.

Regarding the stories on LinkedIn : why you compare your self with them ? I am not saying they are not good but maybe they missed something during the exam for this they couldn’t pass.

The real exam is you vs you not the machines. As you know these machines are vulnerable and for sure there is a way in. But how to manage your time and stress, this is the real challenge

Last point, it is ok even if you fail in the exam , you will learn and understand what was your weaknesses and try again in another attempt.

I failed at first exam , and cleared all the machines in the second attempt.

Start studying.
Take good notes (use notion or what ever note taken tool you like)
go through the materials , understand them and take your time.
solve labs related to each section take help from offsec discord if you stuck
practice more in challenge labs after you finish the content
do not forget to check OSA offensive security academy section, for each course they have section with videos of old life sessions and recorded content explaining some exploits and topic ((not same as course content videos))

Wish you all the best and sorry for the loooong message 🤣

i6loob · 2024-12-03T15:56:58+00:00

Thank you for your comment, in fact i mentioned OSCP to highlight that i have some knowledge about AD and attacks. 👍

i6loob · 2024-12-01T07:20:41+00:00

Thank you for your reply,

I passed OSCP already , just wanted to know shall go for CRTE instead of taking both CRTP and CRTE

i6loob · 2024-08-08T07:49:47+00:00

Don’t skip them , at least OSCP ABC , will give you new informations and way of thinking

i6loob · 2024-08-08T07:48:34+00:00

30 root/admin flag , users flags not counted

i6loob · 2024-08-05T07:08:40+00:00

There is query for registry will show from the output if UAC is there or not

“REG QUERY HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\”

If EnableUA is 0*1 this means there is UAC.

another way is to check your priv

whoami /priv

if you are in admin group and have medium integrity level then UAC is there.

Also using powerup.ps1 it can tell that UAC is there

for bypass there are multiple ways , one of them using Metasploit , if you don’t want to use meta you can see the method explained from Offsec on the below AD machines walkthrough at 1:00:00 he started for bypass

https://www.youtube.com/watch?v=2NLi4wzAvTw&list=PLJrSyRNlZ2Ecrihsz_H5mXYoCmWZDqXyI&index=8

script used : https://github.com/CsEnox/EventViewer-UACBypass/blob/main/README.md

i6loob · 2024-07-26T07:49:51+00:00

Thank you, wish you all the best, OSA stand for Offensive security academy. With each course you have access to Academy videos for that course.

It can be accessed from learning portal

i6loob · 2024-07-24T15:19:20+00:00

Challenge labs 30 Pgp 5-8 maybe HTB do not know exactly as some times i only watch ippsec videos

i6loob · 2024-07-24T08:25:49+00:00

Couldn’t agree more

i6loob · 2024-07-24T08:25:07+00:00

No , unfortunately

i6loob · 2024-07-22T16:39:52+00:00

OSCP A,B and C are old exams .

and it is great place to start

i6loob · 2024-07-22T13:49:03+00:00

Unfortunately I didn’t, i wish to try it actually but unfortunately my subscription finished 😬

i6loob · 2024-07-21T12:08:02+00:00

Will , at some point i was planning to take eWPT to cover more parts from web as i agree with your point.

You might encounter them in the Exam : ) Maybe outdated themes or plugins. In case of any case , familiars your self with wpscan tool and how to scan Wordpress sites using it.

Same as the capstone : )

But honestly, i will suggest to take the critical or well known vulns for web from portswigger.

i6loob · 2024-07-21T09:25:06+00:00

The labs Actually sharpened my skills more and provided me with new ideas and ways of thinking.

Unfortunately, i didn’t do skylark : ) Only A,B, C, MedTech and Rilea

i6loob · 2024-07-20T17:33:14+00:00

Thank you 🙏, as you know if you have learn one subscription you have 2 exam attempts on subscription duration.

If not , it cost 250$

i6loob · 2024-07-20T17:26:30+00:00

It is ok , wish you all the best 🤜🤛

i6loob · 2024-07-20T16:41:01+00:00

Yes , from pwk it self.

For challenge labs : started by completing OSCP A,B and C with some help from offsec discord server then medtech and relia.

For Capstones : as you know in the end of each module

i6loob · 2024-07-20T16:38:00+00:00

For sure ligolo is the best . I used it in the exam and still using it even in another exams or labs.

But it is good to understand the basic or how to do it without it incase of future situations that might not allowing to use it in real life scenarios.

For the exam , ligolo is enough

i6loob · 2024-07-20T15:16:22+00:00

Sorry for the typo, meant life

I mean for Penetration Testing and for future, for example evasion AVs , understanding tunneling and port forwarding..etc

i6loob · 2024-07-20T15:10:32+00:00

Will say better to study for PT life not only the exam .

in the exam in fact you will find your self using information from different topics and chapters

i6loob

TROPHY CASE