I'm currently 2 weeks into the OSCP. I heard that for the final exam you are only able to use Metasploit one time. Armed with that new information, I'm trying to ween myself off my favorite tool and go back to a manual process.

My question for the OSCP cert folks is about a strategy. If for example, you find a box that is vulnerable to ms08-067, instead of using metasploit, you'd have to search for the exploit and find a POC. Then, you'd have to understand the code to enough to be able to fix it for your own environment. Would you say this is correct?

If this is so, I'd say you've got to master fingerprinting and have ninja skills in finding exploit POCs.

Your thoughts?

@cd1zz: My best advice would be:

1) Go through the videos
2) Do all exercises, including the "Extra Mile" ones
3) Hack your way into many, many, many, many lab machines and find your way into the other networks (dev, IT and admin)
4) Then worry about what you are missing for the exam

The exam is very tough and it is too big to discuss learning strategies here. But if you follow these 4 steps, you should be fine!

Hey all. I'm also going through the course and spending a lot of hours in the lab banging away at things. I've had some problems getting nmap scans to work, which might hurt for time in the challenge maybe. (Nmap reports host is down though I can reach it through other means like netcat, etc. not sure if this is how it's "supposed" to work in the lab or not.) Doing things more manually sounds better but may push a 24 hour window, wouldn't it?

linares

Will do thanks. I was trying -PN and no game. As long as I know it's a bug and not a feature I'll just try em all.

linares

well since your taking OSCP then the answer for you question will be withing the course modules trust me i know

Congrats on passing!

Nice review, congrats on passing!

As another who fully understands, I'd say you've got the right mindset (with the wife and kids,) but I'll tell you, you'll find a way to make it work, and it's worth it when you've done it.