.

Starting OSCP from 2nd June 2013 !!!

<<

the_hutch

User avatar

Newbie
Newbie

Posts: 9

Joined: Mon Jul 01, 2013 2:05 pm

Post Mon Jul 01, 2013 4:25 pm

Re: Starting OSCP from 2nd June 2013 !!!

hanyhasan wrote:Privilege escalation =  g0tma1k have a nice article about it and every one recommend it


Second this. Highly recommend this article for intelligent privilege escalation in a linux environment. Helped a lot.
Justin Hutchens
OSCP, CISSP, CNDA, CEH, ECSA, CHFI
http://www.linkedin.com/in/justinhutchens
Kali Linux - Backtrack Evolved
http://www.packtpub.com/kali-linux-back ... ting/video
<<

Master Of Puppets

User avatar

Newbie
Newbie

Posts: 21

Joined: Mon Jun 24, 2013 2:20 am

Location: /bin/bash

Post Thu Jul 04, 2013 6:50 am

Re: Starting OSCP from 2nd June 2013 !!!

How are you doing?
<<

batz21

User avatar

Newbie
Newbie

Posts: 5

Joined: Fri May 24, 2013 5:16 am

Post Fri Jul 05, 2013 8:07 pm

Re: Starting OSCP from 2nd June 2013 !!!

Not Good at all... :(

Seems I don't have the proper foundation for the OSCP. Still struggling and learning the stuff. My Count is only 3 and I am 15 days into the lab.

Lets see how things advance...

regards
batz21
<<

rockman

Full Member
Full Member

Posts: 104

Joined: Sun Apr 06, 2008 12:38 pm

Post Sat Jul 06, 2013 10:49 am

Re: Starting OSCP from 2nd June 2013 !!!

batz21 wrote:Not Good at all... :(

Seems I don't have the proper foundation for the OSCP. Still struggling and learning the stuff. My Count is only 3 and I am 15 days into the lab.

Lets see how things advance...

regards
batz21


You just need experience and the labs will give you that. Enumeration is key and the more the better. Some helpful tools for systems in the lab running web servers and web based apps are;

Nikto (web vulnerability scanner) - This helped me a lot. Nikto works well at finding vulnerabilities.

Dirbuster (web crawler) - This is a great tool for discovering files and directories.

Burp Suite (web proxy) - Burp is an awesome tool. You can crawl/spider like in Dirbuster, but you can modify http requests and send them to the web server, as well as a lot of other things. You can brute force html forms.

HTTPrint - This tool is good for fingerprinting the web server. This is good to double check nmap results.
<<

Master Of Puppets

User avatar

Newbie
Newbie

Posts: 21

Joined: Mon Jun 24, 2013 2:20 am

Location: /bin/bash

Post Mon Sep 16, 2013 7:31 am

Re: Starting OSCP from 2nd June 2013 !!!

Did you end up extending your lab time? How about the others? Hope it's going good.
Previous

Return to OSCP - Offensive Security Certified Professional

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software