As mentioned, Security Tube has a good Linux assembly primer available. I'm not of the fan of the AT&T-style syntax, so make it a homework lessen to convert the examples to Intel-style and use nasm instead http://www.securitytube.net/groups?operation=view&groupId=5

http://www.amazon.com/Assembly-Language-Step---Step-Programming/dp/0470497025/ref=sr_1_6?ie=UTF8&qid=1345306985&sr=8-6&keywords=assembly is the best written resource I've found for getting started in assembly. Some of the reviews bash it over a chapter where he uses a weird analogy to explain counting in bases other than 10. I agree, it's weird. However, you should already know how to convert between hex, binary, and decimal, so just skip it. The other problem is that the debugger he used was unfortunately dropped from the Ubuntu repo shortly after the book was published. Just use Evan's Debugger or grab an old version of Ubuntu (8.10 works, I believe). This is another Linux resource. You'll probably be working mostly on Windows, but aside from the system calls, it's going to be nearly identical because it's the same hardware. This book uses the Intel-style syntax.

http://www.amazon.com/Professional-Assembly-Language-Programmer/dp/0764579010/ref=sr_1_5?ie=UTF8&qid=1345306985&sr=8-5&keywords=assembly goes beyond the book I referenced above (and is actually mentioned as a next-step at the end). This probably goes above-and-beyond what you're looking for at the moment. It covers floating-point arithmetic and various extensions to the instruction set over the years (at least up until 2005 when it was published). It's an interesting read, but like I said, probably not entirely relevant. This book unfortunately uses the AT&T-style syntax, but it's another opportunity to practice converting the examples to Intel-style (granted, you'll probably find a lot of AT&T-style examples in the Linux world, so it's good to be acquainted with both)

As awesec mentioned, the Intel developer docs are going to be your end-goal. You're not going to find a more complete and comprehensive resource.


Not the best use of unicorn scan, but:
for i in `seq 200 254`; do unicornscan -p p 192.168.1.$i; done

You could also use the largest range within the limit and use the above for the stragglers.


Yes, nice links. Remember that exploit-db.com has a lot of custom shellcode as well.

No problem. It's funny how quickly you can adapt to a strong accept. As with Vivek, a good friend/ex-coworker of mine was from Colombia and had a very strong accent. I could barely understand him for the first couple days we worked together, and then I just suddenly stopped noticing it. 


WAHH2 is a great book, good choice. If you're looking for a bit more in-depth read on SQLi, consider http://www.amazon.com/Injection-Attacks-Defense-Justin-Clarke/dp/1597494240 as well (no rush, it'll take you awhile to get through WAHH2; save that for a rainy day). Syngress also has an entire book dedicated to XSS, but I haven't had a chance to go through it yet.


Yea, 30 days is a really aggressive schedule. You need to space out all the frustration, so you don't get an aneurysm 


That totally depends on the book.


That's a very good book, especially for someone with little-to-no Metasploit experience. Also, it'd be hard to go wrong with Dave Kennedy and all the OffSec guys (along with a stamp of approval from HD Moore). Sil wrote a review not too long ago (http://www.ethicalhacker.net/content/view/418/2/). Remember that Security Tube also has a Metasploit series, and there's always Offensive Security's free course as well: http://www.offensive-security.com/metasploit-unleashed/Main_Page


I don't have any experience with this one, and it seems to overlap a lot with the previous resource. I'd start with the other one and the free course and see if you feel like you need another written resource beyond that.


This book actually looks like it has decent content, but the title is ridiculously embellished. That's unfortunate. Just glancing at the ToC shows that about half the content is basic material that you'd probably find in most penetration testing resources. It's probably got a few chapters that would stand out and be worth a cheap used price, but $60 seems pretty steep.


I'd drop this one off your list of potentials. It's probably a fine book for what it is, but I don't think it's going to teach you anything you're not covering elsewhere.

If that wasn't enough, Tom from Hacking Dojo also has a book that, in addition to generation penetration testing techniques, also covers some business and project management information. This isn't as exciting as popping a box, but it's important information for aspiring professionals: http://www.amazon.com/Professional-Penetration-Testing-Creating-Learning/dp/1597494259/ref=sr_1_1?ie=UTF8&qid=1345319341&sr=8-1&keywords=professional+penetration

This one also covers a lot of general tools and techniques and may be worth a look: http://www.amazon.com/Penetration-Testers-Source-Toolkit-Third/dp/1597496278/ref=sr_1_1?s=books&ie=UTF8&qid=1345319091&sr=1-1&keywords=open+source+penetration

You're on your own as far as all those go. Just go with what looks interesting to you. You'll find that you're going to have diminishing returns with each resource you use. You may find the first book you read to be 95% new and exciting, but your fifth or sixth book may fall to 15-20%. You'll probably get something out of any resource you go through, but you need to determine if that's going to be the best use of time and money.

I think the following three books will give you the most knowledge combined with the OSCP track, although it can be pretty complex:

Metasploit: The Penetration Tester's Guide
The Shellcoder's Handbook - Discovering And Exploiting Security Holes
Web Application Hacker's Handbook (not sure how much web-attacks come back in the exam as they also seem to be developing a webapp track)

I did read "Advanced Penetration Testing for Highly-Secured Environments" but it is not as advanced as the title suggests. Better pick it up second hand and use the money you save to put into obtaining more certs or have a beer.

Further more I like to mention:
Ninja Hacking - Unconventional Penetration Testing Tactics and Techniques

This books covers some unrealistic attacks but also hands out a nice selection of attacks that can be used and usually not come back in other books. For example I liked the mention of disrupting an admins routine to add stress to his daily work and by doing so make him less focused on the work at hand. I know most attacks will be out of scope but nevertheless it is a nice read and of course these tactics can be applied by blackhats without restriction.

On my "to read" list:
Rootkits - Subverting the Windows Kernel
Practical Packet Analysis 2nd Edition

Nice advice Sh4dowmanpp... those are all great books.

Sounds like you need a little rest Sternone.... get some air and some sun....

Hope the rest of the training goes well 

Cool sounds like everyone who done this has learned lots it makes me want to do the course even more than I already do.

I did 90 days at the end of 2011, abandoned it due to time constraints, and started again on the 13th. I learned a LOT since I stopped!

9 servers with root shells!

Damn. My setup sucks balls.