Failed my first attempt at the OSCP exam

[r0ckm4n]

I completed and failed my first attempt at the OSCP exam. I started PWB in April of last year. I started out with 90 days of lab time and have extended my lab time 7 times. My goal is to retest at the end of my lab time, which is the March 1.

I at least have a better idea on my weaknesses and how to prepare better. One thing I had a problem with was creating a good password dictionary for Hydra brute force password attacks. Anyone with any tips in that area, it would be much appreciated. I have been putting in a lot of hours studying the past 6 weeks. I average between 35 to 45 hours a week. I need to focus more on quality study time.

[superkojiman]

When I was doing the lab, I had pretty good luck with the RockYou wordlist found here: http://www.skullsecurity.org/wiki/index.php/Passwords

However, it is a huge list and it's unlikely you'll be able to use it all in the limited time you have for the exam. Better to start off with a smaller list - like the one you created as you were going through the machines in the lab.

[MaXe]

A lot of OSCPs and especially OSCEs fall the first time. Recognize your weakness as you did, and make sure you won't fail the second time 

[r0ckm4n]

When I was doing the lab, I had pretty good luck with the RockYou wordlist found here: http://www.skullsecurity.org/wiki/index.php/Passwords

However, it is a huge list and it's unlikely you'll be able to use it all in the limited time you have for the exam. Better to start off with a smaller list - like the one you created as you were going through the machines in the lab.

Thanks for your repsonse, superkojiman. I will give that a try in the lab and work on a smaller list.

[r0ckm4n]

A lot of OSCPs and especially OSCEs fall the first time. Recognize your weakness as you did, and make sure you won't fail the second time 

Thanks for the words of encouragement, MaXe.

[ajohnson]

Skull Security has a great collection. There is also http://www.isdpodcast.com/resources/62k-common-passwords/ (which I believe includes some/all of the Skull Security lists). https://dazzlepod.com/uniqpass/ is also a nice collection if you don't mind parting with a few dollars.

They're not going to make you grind passwords for hours, so if you're not having any luck, maybe try being smarter about it -- i.e. reviewing HTML source for comments (random example unrelated to OffSec training/testing), or look for another attack vector. I found the darkc0de.lst file that's included with BT to be sufficient for most services with weak passwords in the lab.

[H1t M0nk3y]

Like MaXe said, many people don't pass the first time. I passed on my third real attempt...
Like many, you have probably found that the exam simply continue your learning process. It will only feel better when you'll succeed on your next attempt! 

They're not going to make you grind passwords for hours, so if you're not having any luck, maybe try being smarter about it

ajohnson is right about this. They don't expect you to crack password for hours and hours because you'll run out of time!

Good luck, don't despair and keep posting your questions!

[r0ckm4n]

Thanks for the advice and encouragement, ajohnson and H1t M0nk3y.

[azmatt]

I'll be taking on the PWB later this year or early next year and I fully intent to pay for extensions and fail a test or two 

It's tough to see in times like this but if you take a step back and look to your skill level when you first started the PWB I'd imagine that you're night and day better now.

If you stick with it, you will get it. Good luck!!!

[r0ckm4n]

Thanks for the encouragement, azmatt!

The course has well been worth it and I have learned a lot. I highly recommend the course and good luck to you when you start.

[r0ckm4n]

I'm registered to retake the test next Sunday.

[DragonGorge]

Good luck!

I 3rd (or 4th) what ajohnson said...a password attack shouldn't be your primary vector. Personally speaking, in the lab and on the exam, I didn't put much effort into password cracking/guessing other than the obvious ones (username, defaults, etc). I felt that there were more direct/less random ways to get into the machines.

[r0ckm4n]

Good luck!

I 3rd (or 4th) what ajohnson said...a password attack shouldn't be your primary vector. Personally speaking, in the lab and on the exam, I didn't put much effort into password cracking/guessing other than the obvious ones (username, defaults, etc). I felt that there were more direct/less random ways to get into the machines.

Thanks, DragonGorge!

[r0ckm4n]

I failed my 2nd attempt.

[hayabusa]

Sorry to hear it, r0ckm4n.  I know it gets old when folks tell me this, but I'll pass it along anyway...

Don't get discouraged.  As I'm sure you did last time, take it, learn from it, and keep growing.  If it does NOTHING else, it'll teach you that, no matter how much you know, there's always things to be learned. 

It's both a blessing and a curse, in the IT security realm.  For those who LOVE change, there's ALWAYS change / updates / new ideas, methods and technologies.  For those who don't...  well...    

Either way, I'm confident you'll continue to grow, and you will succeed, when you're ready.