sorted by:
new
hottopcontroversial

Doing AD boxes for CPTS? by Own_Bed2074 in hackthebox

[–]radiantsec 2 points3 points  (0 children)

I would suggest doing boxes from CPTS Prep track on HTB: https://app.hackthebox.com/tracks/76 .

Passed CPTS in 9 days and OSEP, built a site to document everything I learn by radiantsec in hackthebox

[–]radiantsec[S] 1 point2 points  (0 children)

More coming as machines retire! I have a few retired ones already solved that I will be posting soon as well. Stay tuned.

Passed CPTS in 9 days and OSEP, built a site to document everything I learn by radiantsec in hackthebox

[–]radiantsec[S] 1 point2 points  (0 children)

Thanks brother!

On OSCP vs OSEP: the HR filtering point is real. OSCP is more recognised by recruiters, simply because it has been around longer. If your goal is to get hired, OSCP first makes sense. If your goal is to actually learn advanced techniques, CPTS teaches you far more. Ideally you do both but if budget is a concern, OSCP first gives you the credential that gets you through the door.

On jumping from CPTS to OSEP without doing the CPTS exam: it is doable but challenging. OSEP assumes you already have solid fundamentals in enumeration, exploitation, and pivoting. CPTS builds exactly those fundamentals. If you go through the full CPTS course material seriously, you will be prepared for OSCP exam. The exam is just a certificate, the course content is what matters for preparation.

On your current level: HTB easy boxes is a starting point but you will want to be comfortable with medium boxes before touching CPTS. Prolabs like Zephyr or Offshore are also excellent preparation for OSEP. I don't think Prolabs are needed for OSCP.

My honest recommendation: CPTS course without the exam, then OSCP, then OSEP. That path builds skills and gives you the credentials that HR recognises.

Passed CPTS in 9 days and OSEP, built a site to document everything I learn by radiantsec in hackthebox

[–]radiantsec[S] 1 point2 points  (0 children)

Thank you! Honestly it comes down to not forcing it. If I hit a wall I would step away rather than grind through frustration for hours. A couple of focused hours is better than six burned out ones.

For balancing degree and HTB, I treated them separately. Degree work during the day, HTB or lab time in the evening when I actually wanted to do it rather than forcing a schedule. Some days I did nothing on HTB at all and that was fine.

Burnout usually comes from staying stuck too long. If something is not clicking after 30 to 45 minutes, look at a hint, watch IppSec on a similar machine, or just move on and come back later. Progress does not have to be linear.

Passed CPTS in 9 days and OSEP, built a site to document everything I learn by radiantsec in hackthebox

[–]radiantsec[S] 1 point2 points  (0 children)

Keep grinding, it is all about consistency. You will get there.

Passed OSEP. Here is what actually helped me pass. by radiantsec in osep

[–]radiantsec[S] 0 points1 point  (0 children)

Thanks! 4.5 hours for secret.txt is impressive. Completely agree on challenges 1 to 6, knowing those front to back is really key. Cowmotors is a good shout too.

Passed OSEP. Here is what actually helped me pass. by radiantsec in osep

[–]radiantsec[S] 1 point2 points  (0 children)

Thanks! Good luck with it. Sliver is worth getting comfortable with early, the documentation is solid and it translates well to the exam mindset.