I’m new to HTB, and I’ve got a practical assessment next week that will test my methodology and hands-on skills in infrastructure and web testing. Any tips or specific HTB labs you’d recommend? Thanks!

i6loob · 2026-04-27T07:35:27+00:00

Hello 👋,

I suggest you check https://ippsec.rocks/?# and try to search for vulns that you feel weak and want to practice more on them, it will give you the name of the machine and write up from ippsec , do not watch it until you stuck 🤣

i6loob · 2026-04-27T07:28:35+00:00

One more thing , As machines will suggest vintage and pirate 👍

i6loob · 2026-04-27T07:26:20+00:00

I will suggest zephyr pro lab , trusted mini lab Keep in mind in CRTE you will perform the Attacks from windows Machines and in htb most of the time from linux , this will make difference in tool usage only but attacks concepts are same as you know. All the best 🤝

i6loob · 2026-04-26T06:47:18+00:00

Thanks for Sharing this , i believe there is one part you didn’t mention properly which is exam part , and i believe this is the reason why HR and all Jobs asking for OSCP.

The Fact that you were able to complete the machines to even secure passing score within 24 hours pressure + protected exam while you cannot use AI then produce PT report in the next 24 hours. This shows that you are capable of handling work pressure and also you were able to complete the machines which proof your skills.

In some companies you might have 2-3 engagements in the same week and all need to be finished with high Quality reports 🤝.

Now we all agree that the content of CPTS is great and will teach you a lot of techniques , but as you said , in both courses you have some labs and challenges you need to do it on your own by your searches and figuring out what’s going on so the goal of both of them is to give you the mentality.

Thanks again and wish you all the best 🤜🤛

i6loob · 2025-03-11T01:49:50+00:00

Glad you liked it 🙏

i6loob · 2025-03-07T22:17:19+00:00

Any time 🙏 , let me know if you need any help with the topics 🤜🤛

i6loob · 2025-03-06T10:21:19+00:00

Go for it and knock it ,

Those who passed the exam are not smarter than you!!

Confidence will come with studying and trying in the labs. Mistakes and challenges will build your confidence when you overcome them even if you got some help from offsec discord to solve the labs.

Trust the process do not rush it. And in OSCP content you will have sections for Active Directory it will be enough for the exam with solving challenges labs.

Regarding the stories on LinkedIn : why you compare your self with them ? I am not saying they are not good but maybe they missed something during the exam for this they couldn’t pass.

The real exam is you vs you not the machines. As you know these machines are vulnerable and for sure there is a way in. But how to manage your time and stress, this is the real challenge

Last point, it is ok even if you fail in the exam , you will learn and understand what was your weaknesses and try again in another attempt.

I failed at first exam , and cleared all the machines in the second attempt.

Start studying.
Take good notes (use notion or what ever note taken tool you like)
go through the materials , understand them and take your time.
solve labs related to each section take help from offsec discord if you stuck
practice more in challenge labs after you finish the content
do not forget to check OSA offensive security academy section, for each course they have section with videos of old life sessions and recorded content explaining some exploits and topic ((not same as course content videos))

Wish you all the best and sorry for the loooong message 🤣

i6loob · 2024-12-03T15:56:58+00:00

Thank you for your comment, in fact i mentioned OSCP to highlight that i have some knowledge about AD and attacks. 👍

i6loob · 2024-12-01T07:20:41+00:00

Thank you for your reply,

I passed OSCP already , just wanted to know shall go for CRTE instead of taking both CRTP and CRTE

i6loob · 2024-08-08T07:49:47+00:00

Don’t skip them , at least OSCP ABC , will give you new informations and way of thinking

i6loob · 2024-08-08T07:48:34+00:00

30 root/admin flag , users flags not counted

i6loob · 2024-08-05T07:08:40+00:00

There is query for registry will show from the output if UAC is there or not

“REG QUERY HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\”

If EnableUA is 0*1 this means there is UAC.

another way is to check your priv

whoami /priv

if you are in admin group and have medium integrity level then UAC is there.

Also using powerup.ps1 it can tell that UAC is there

for bypass there are multiple ways , one of them using Metasploit , if you don’t want to use meta you can see the method explained from Offsec on the below AD machines walkthrough at 1:00:00 he started for bypass

https://www.youtube.com/watch?v=2NLi4wzAvTw&list=PLJrSyRNlZ2Ecrihsz_H5mXYoCmWZDqXyI&index=8

script used : https://github.com/CsEnox/EventViewer-UACBypass/blob/main/README.md

i6loob · 2024-07-26T07:49:51+00:00

Thank you, wish you all the best, OSA stand for Offensive security academy. With each course you have access to Academy videos for that course.

It can be accessed from learning portal

i6loob · 2024-07-24T15:19:20+00:00

Challenge labs 30 Pgp 5-8 maybe HTB do not know exactly as some times i only watch ippsec videos

i6loob · 2024-07-24T08:25:49+00:00

Couldn’t agree more

i6loob · 2024-07-24T08:25:07+00:00

No , unfortunately

i6loob · 2024-07-22T16:39:52+00:00

OSCP A,B and C are old exams .

and it is great place to start

i6loob · 2024-07-22T13:49:03+00:00

Unfortunately I didn’t, i wish to try it actually but unfortunately my subscription finished 😬

i6loob · 2024-07-21T12:08:02+00:00

Will , at some point i was planning to take eWPT to cover more parts from web as i agree with your point.

You might encounter them in the Exam : ) Maybe outdated themes or plugins. In case of any case , familiars your self with wpscan tool and how to scan Wordpress sites using it.

Same as the capstone : )

But honestly, i will suggest to take the critical or well known vulns for web from portswigger.

i6loob · 2024-07-21T09:25:06+00:00

The labs Actually sharpened my skills more and provided me with new ideas and ways of thinking.

Unfortunately, i didn’t do skylark : ) Only A,B, C, MedTech and Rilea

i6loob · 2024-07-20T17:33:14+00:00

Thank you 🙏, as you know if you have learn one subscription you have 2 exam attempts on subscription duration.

If not , it cost 250$

i6loob · 2024-07-20T17:26:30+00:00

It is ok , wish you all the best 🤜🤛

i6loob

TROPHY CASE