|
Title: OSCE Review Post by: cd1zz on May 03, 2011, 02:06:43 PM Well, it will be nice to have my life back. I managed to get through the OSCE challenge and got word today that I obtained the cert.
I documented my experience like I did with the OSCP: http://www.networkadminsecrets.com/2011/05/offensive-security-certified-expert.html (http://www.networkadminsecrets.com/2011/05/offensive-security-certified-expert.html) Title: Re: OSCE Review Post by: millwalll on May 03, 2011, 02:10:10 PM well done
Title: Re: OSCE Review Post by: Agoonie on May 03, 2011, 02:36:05 PM Great review. I will be signing up soon, definitely. I promised my wife I would take a break after the OSCP. ;D Of course I did the FC4 already just to see if I could do it. Thanks for the review. You and MaXe had a great experience even with the pain. LOL. I have to take this course. I am really excited now. Will it matter if someone uses BackTrack 5 instead of BackTrack 4 when taking the course??
Title: Re: OSCE Review Post by: UNIX on May 03, 2011, 02:37:30 PM Congrats, cd1zz.
Quote Will it matter if someone uses BackTrack 5 instead of BackTrack 4 when taking the course?? Doesn't matter. Title: Re: OSCE Review Post by: cd1zz on May 03, 2011, 03:01:19 PM Go for it dude. As far as BT4 or 5, it wont matter. I actually spent most of my time in Windows VMs using Immunity because most of this is windows exploit dev and windows pwnage.
Title: Re: OSCE Review Post by: alucian on May 03, 2011, 03:09:57 PM Congrats!
And I really liked your review. Title: Re: OSCE Review Post by: lorddicranius on May 03, 2011, 04:55:23 PM Gratz and nice review :)
Title: Re: OSCE Review Post by: H1t M0nk3y on May 03, 2011, 07:55:52 PM Congratz cd1zz!!!
I took the CPT course too and I have yet to challenge the OSCE exam. I have to say the course indeed opened my eyes big time! After doing the exercises, I took a pause and wrote the CISSP exam (because every contract requires it...). I basicaly went from one extreme to another! Passing from "dreaming about Hex" to learning about "Business Continuity Planning" was like eating vanilla ice cream after drink whiskey. It didn't taste good... I am going to Dallas in a bit more than a week to take "Advanced Penetration Testing Course" by Joe McCray. Then, after a little break, I will start playing in exploitdb to recreate exploits. Quote After I completed the course modules I jumped on exploit-db and started recreating all of the buffer overflow exploits I could find. I would take one, strip out everything in the middle and try to get the same results. I probably recreated 50 exploits. The point of this was to get very familiar inside a debugger and to see first hand some of the obstacles you encounter when writing exploits. BTW cd1zz, would you say this tactic paid off? Would you change anything in your preparation? Thanks and congratulations again!!! Title: Re: OSCE Review Post by: cd1zz on May 03, 2011, 08:25:55 PM I've been putting off the CISSP but unfortunately I think its next for me. Nice work on getting through that.
For me, recreating exploits was key because I only knew basic assembly and had basic debugger skills. It forced me to become comfortable in a debugger and learn much more about assembly. For example, if the original author of an exploit wrote it as an EIP overwrite, I'd look for the SEH overwrite and rewrite it. If they didn't use an egghunter, I would add an egghunter. If the original author only wrote it for XP, I'd write it for Vista or 7. Using this method I managed to run into all kinds of issues I had to sort out. My biggest weakness going into this course was on the web side. I wish I would have spent more time on this. I would recommend not only focusing on the exploit dev but understand exploiting all kinds of web apps. Title: Re: OSCE Review Post by: H1t M0nk3y on May 04, 2011, 05:24:09 AM Thanks cd1zz for your comments.
Quote If the original author only wrote it for XP, I'd write it for Vista or 7 All my machines at home are 64 bits OS... I wanted to do the same as you and rewrite exploits at home, but I am a bit stock because of that... Thanks for the advice on the web apps. It's true, we tend to focus more on the exploit development side... Good luck for CISSP! PM me if you need some advice. Title: Re: OSCE Review Post by: mambru on May 05, 2011, 09:44:13 AM Congrats cd1zz! I know the pain of going through the CTP training and the challenge, and my time has come to suffer it again. Hopefully I'll be able to get my life back once I knock it off, unless I get hooked on with a new course.
Title: Re: OSCE Review Post by: MaXe on May 08, 2011, 08:40:18 AM Great review. I will be signing up soon, definitely. I promised my wife I would take a break after the OSCP. ;D Of course I did the FC4 already just to see if I could do it. Thanks for the review. You and MaXe had a great experience even with the pain. LOL. I have to take this course. I am really excited now. Will it matter if someone uses BackTrack 5 instead of BackTrack 4 when taking the course?? It was fun, but all the glamour has almost worn off for me now lol ;D It won't matter which version of BackTrack you use, but different versions of Metasploit has different payloads, so you may want to grab an older version of Metasploit as well just in case if it doesn't work out. (There's more info on the student forums about this as well.) There's a few other tools that requires different args as well, and some that works a little bit differently but this is just a part of the challenge in my opinion, so it shouldn't matter a lot since I didn't use BackTrack ;) Title: Re: OSCE Review Post by: tturner on May 11, 2011, 12:26:40 PM All my machines at home are 64 bits OS... I wanted to do the same as you and rewrite exploits at home, but I am a bit stock because of that... Why can't you load up 32 bit VMs on your 64 bit host? Title: Re: OSCE Review Post by: Agoonie on May 24, 2011, 02:53:21 PM Just wondering, is the book, "Fuzzing: Brute Force Vulnerability Discovery" by
Michael Sutton, et al a good book to pick up before taking the OSCE course? Title: Re: OSCE Review Post by: cd1zz on May 24, 2011, 02:59:29 PM I bought that book and found it to be useful at times during the course. I think its good to have in the arsenal regardless... I find myself referring to it more and more after I finished OSCE.
Title: Re: OSCE Review Post by: Agoonie on May 25, 2011, 06:51:15 AM Hopefully by practicing the exploit-db exploits and checking out the book, I should be ready to tackle this course. Thanks again for the info. ;D
Title: Re: OSCE Review Post by: MaXe on May 25, 2011, 12:44:23 PM Hopefully by practicing the exploit-db exploits and checking out the book, I should be ready to tackle this course. Thanks again for the info. ;D Good luck, you'll need it ;)
Powered by SMF 1.1.18 |
SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com |