.

My OSCP journey...

<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Mon Sep 10, 2012 7:50 pm

Re: My OSCP journey...

It's been my personal favorite, so far (except for OSCE, which I'll be rescheduling an exam for, in the near future.)

No worries about not spotting it.  Glad I could help.  :-)
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

termight

User avatar

Newbie
Newbie

Posts: 26

Joined: Tue Aug 21, 2007 5:50 pm

Location: MARS

Post Tue Sep 11, 2012 8:12 pm

Re: My OSCP journey...

@sternone I understand your frustration, I got to know of OSCP back in the days when it was PWB (2008). During those days I was busy on my Cisco certification track of which currently I hold the following CCNA,CCDA,CCNP,CCDP and CCIE-Written not forgetting my MCSE+sec. I was and still am a Cisco and Microsoft guru until my company got hacked I was so embarrassed and frustrated that I quit the job (reasons being I didn't know what,who and where to starts troubleshooting from cos my anti-virus, firewall and all security measures failed me). In 2010 I decided to embark on OSCP but realizing I have a weakness in programming i started studying C, Assembly, Linux,Bash and now Python just to get a solid foundation before starting the OSCP. Do you know the number of books I've bought? forums I join etc. just because of OSCP, which i'll be taking next year even after taking the eCPPT. I always ask myself what will I do with my CCIE certification thus if I pass the lab and still the companies I work for gets hacked? Even Pentagon, RSA, Microsoft, Amazon etc do get hacked.

I think OSCP is not your usual Microsoft and Cisco exams that you study 1 book or CBT and the question you get in the final exams is about what you learnt from the book. No with OSCP it is what you get in real world, just a Little advice join forums underground sites IRC etc. they help.

After all your effort if it still doesn't pay off I bet you, with the same amount of time and effort you put in OSCP you can pass any CCIE exams on the 1st try.

Don't give up give it a second short. Money is hard to come by do don't let it go.
>>There Is Always A Blind Spot In
>>Every Software, It's Up To Us To Find It
<<

sternone

Full Member
Full Member

Posts: 129

Joined: Tue Aug 07, 2012 1:31 am

Post Tue Sep 11, 2012 9:05 pm

Re: My OSCP journey...

You are a CCIE and passed the practical lab test for the CCIE in one of the CISCO labs worldwide and claim that 'once you pass the OSCP you can pass any CCIE lab' ??  :o :D :D

Funny stuff !!!

Like I say, I guestimated 400 to 600 hours to pass the OSCP, I think it's way more to reach a CCIE
Try harder....hmpf!!
<<

termight

User avatar

Newbie
Newbie

Posts: 26

Joined: Tue Aug 21, 2007 5:50 pm

Location: MARS

Post Wed Sep 12, 2012 5:14 am

Re: My OSCP journey...

sternone wrote:You are a CCIE and passed the practical lab test for the CCIE in one of the CISCO labs worldwide and claim that 'once you pass the OSCP you can pass any CCIE lab' ??  :o :D :D

Funny stuff !!!

Like I say, I guestimated 400 to 600 hours to pass the OSCP, I think it's way more to reach a CCIE






Don't get me wrong, I am not yet a CCIE I only passed the written exams. All i'm saying is with CCIE R&S you only have to study about 13 books visit forums practice, practice and practice I know many CCIE's who passed the exams on first try and with one year of preparation. CCIE deals with OSI layers 1-7 starting with the Cisco hardware itself, but with OSCP and real world hacking you deal with different OS's BSD,Windows,MAC's,Firewalls, Cisco Router etc. All i say is hacking is more packed than CCIE so with the effort you put in a year to pass OSCP with that same effort you can pass CCIE.

But what happened to you, you created this thread with enthusiasm and even posted snapshots of rooted lab rats. I jealous you so why are you giving up. Note. there wouldn't be fun all fruits were hanging low......... in short hope you can guess what am about to write next."T** *a***r".
>>There Is Always A Blind Spot In
>>Every Software, It's Up To Us To Find It
<<

sternone

Full Member
Full Member

Posts: 129

Joined: Tue Aug 07, 2012 1:31 am

Post Wed Sep 12, 2012 5:38 am

Re: My OSCP journey...

You need to read better. When did I said I'm giving up ?

The written of the CCIE is nothing compared to the lab. The written is just.. the written.

It's the CCIE lab that will kill you.
Try harder....hmpf!!
<<

Catalyst256

User avatar

Newbie
Newbie

Posts: 23

Joined: Thu Dec 22, 2011 11:05 am

Post Wed Sep 12, 2012 6:20 am

Re: My OSCP journey...

Blimey this thread has got big..

First off sternone, well done on your progress so far you should be proud of what you have achieved.. :)

I'm about 50 days into my lab time, so far I've watched about 20% of the videos for the course and only used the PDF as reference material.

I think I've rooted just over 30 boxes now. This isn't to brag, I'm not a pentester or security expert this is the first time I've EVER tried something like this. My biggest ally (and worse enemy) is Google, and I've lost count of the number of hours I've spent looking for something to gain access, even when its been staring me in the face I've still struggled (man have I struggled).

My point? the course material is good, but limited (like it's supposed to be) I've learnt more from trial and error or working it out myself than from anywhere else and for me it's the best way to learn.

I've spoken to people that have rooted most of the boxes in the labs, it doesn't bother me, I'm happy with my progress and what I've learnt and if I don't get them all then I don't get them all, it's not a race against others on the course it's a personal challenge.

If I'm honest, I expect to fail the exam the first time around, and I won't mind if I do (don't get me wrong I hope I pass), but this course isn't easy, nothing I read ahead of starting made it sound easy, but by god it's fun.

Anyway that's my speech over.. :) my only advice sternone would be regardless of how annoying/frustrating or annoying you find the course, enjoy the experience, learn what you can and when in doubt... Try Harder (sorry couldn't resist). :)
@catalyst256

Security+ OSCP VCP CCA
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Wed Sep 12, 2012 10:13 am

Re: My OSCP journey...

T3rm1ght wrote:But what happened to you, you created this thread with enthusiasm and even posted snapshots of rooted lab rats.


sternone wrote:When I read about Offsec I said: THIS IS IT! Don't give me that CEH theoretical bull, I wanna have hands on challenge me that it hurts and I wanna cry stuff !! I ran to get my wallet and ordered my slot right at the spot.


Seriously. It seems like you're complaining for getting exactly what you wanted ;)

Catalyst256 wrote:I'm about 50 days into my lab time, so far I've watched about 20% of the videos for the course and only used the PDF as reference material.


Is there a reason for this? It seems like you're doing yourself a bit of a disservice and making things unnecessarily difficult. It really doesn't even take that long to get through.

Catalyst256 wrote:I think I've rooted just over 30 boxes now. This isn't to brag, I'm not a pentester or security expert this is the first time I've EVER tried something like this. My biggest ally (and worse enemy) is Google, and I've lost count of the number of hours I've spent looking for something to gain access, even when its been staring me in the face I've still struggled (man have I struggled).

My point? the course material is good, but limited (like it's supposed to be) I've learnt more from trial and error or working it out myself than from anywhere else and for me it's the best way to learn.

I've spoken to people that have rooted most of the boxes in the labs, it doesn't bother me, I'm happy with my progress and what I've learnt and if I don't get them all then I don't get them all, it's not a race against others on the course it's a personal challenge.


That's excellent progress. Someone will always be further along than you; there's definitely no reason that should bother you. If you ever have time to worry that, spend that time in the lab instead ;)

Struggling through something is not always enjoyable, but you usually gain a much better understanding of the inner workings of a given technology, and you're not likely to forget the attack technique. Trial-by-fire is the way to go.
The day you stop learning is the day you start becoming obsolete.
<<

Catalyst256

User avatar

Newbie
Newbie

Posts: 23

Joined: Thu Dec 22, 2011 11:05 am

Post Wed Sep 12, 2012 10:19 am

Re: My OSCP journey...

The only reason I haven't read all the material is due to a burning desire to play in the labs, and I learn best by doing instead of reading.

I had done some of the basics before (nmap scanning that sort of thing) so as soon as I had access I was in the labs scanning and enumerating away.

I agree things would have been a bit easier if I read the material but we each do things differently and I've still enjoyed doing things the hard way.. :)
@catalyst256

Security+ OSCP VCP CCA
<<

sternone

Full Member
Full Member

Posts: 129

Joined: Tue Aug 07, 2012 1:31 am

Post Wed Sep 12, 2012 10:22 pm

Re: My OSCP journey...

I began with digging in the Assembly language books I bought.

And my mind wonders.. 20 years ago we used a program called softice. Why did that ever stopped being the number 1 debugger in this world ?

http://en.wikipedia.org/wiki/SoftICE

They say business reasons. Nobody's using assembly debuggers anymore ? I think that's strange no ?

Is there anyone who used to use softice like me ? Or know more about it ?

Those were the days :-)  :D
Try harder....hmpf!!
<<

hayabusa

User avatar

Hero Member
Hero Member

Posts: 1662

Joined: Mon Jan 29, 2007 2:59 pm

Post Thu Sep 13, 2012 7:17 am

Re: My OSCP journey...

I did use it, in days past.  Now, for Win32 debugging, I've pretty much settled on Immunity's debugger.
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'


OSCE, OSCP , GPEN, C|EH
<<

satish.lx

User avatar

Newbie
Newbie

Posts: 36

Joined: Thu Jun 17, 2010 1:15 pm

Post Mon Sep 17, 2012 9:30 am

Re: My OSCP journey...

@sternone - Oh! man you refresh my memory... I was using SoftICE while ago.. I cracked lots of license software keys, cracked games etc.. Just for fun.. I thought softice got absolute because i never heard from anybody.. You are second person, first i am.. myself. lol  :)
Previous

Return to OSCP - Offensive Security Certified Professional

Who is online

Users browsing this forum: No registered users and 1 guest

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software