Oscp on Welcome to noobsec

Hack OSCP

Tue, 30 Jun 2020 22:45:33 +0000

Hack OSCP - A n00bs Guide

Since I cleared OSCP plenty of folks asked me how to clear OSCP, and although I briefly mentioned it in my OSCP Journey post, it was not the whole picture and also not very accessible, and so I’m writing this post.

File Inclusion

Mon, 29 Jun 2020 21:44:39 +0000

File Inclusion

Introduction

File inclusion vulnerabilities are of two types: Remote File Inclusion (RFI) and Local File Inclusion (LFI). RFI is said to be present when a web application allows remote users to load and execute a remote file on the server. LFI is said to be present when a web application allows remote users to load any pre-existing file and execute it on the server.

Linux Privilege Escalation

Mon, 29 Jun 2020 16:33:08 +0000

Linux Privilege Escalation Cheatsheet

So you got a shell, what now? This cheatsheet will help you with local enumeration as well as escalate your privilege further

Usage of different enumeration scripts are encouraged, my favourite is LinPEAS Another linux enumeration script I personally use is LinEnum Abuse existing functionality of programs using GTFOBins

OSCP Journey

Sat, 27 Jun 2020 10:26:58 +0000

OSCP Journey

From a persistent n00b who couldn’t even hack a medium difficulty machine on his own to cracking OSCP in 4 months!

Background

I wanted to do the PwK course and clear OSCP since past couple years but haven’t been able to due to reasons. Two of my certifications were going to expire in August ‘20, and I had to do a certification to renew them, a perfect opportunity. Before I started with the PwK course, I had very little experience with hacking or even CTF for that matter. My college studies or previous certifications weren’t of any help here either. But I decided to take a deep breath, and dive in.

Buffer Overflow

Fri, 26 Jun 2020 18:32:04 +0000

Windows 32-Bit Buffer Overflow

SLMail Example

Practice these:

SLMail - download from exploit-db
Brainpan - download from vulnhub

Step By Step Scripts

All the scripts are available here as well as at the bottom.

Windows Privilege Escalation

Fri, 26 Jun 2020 18:05:42 +0000

Windows Privilege Escalation Cheatsheet

Latest updated as of: 12 / June / 2022

So you got a shell, what now?
This post will help you with local enumeration as well as escalate your privileges further.

Usage of different enumeration scripts and tools is encouraged, my favourite is WinPEAS. If confused which executable to use, use this

OSCP Cheatsheet

Thu, 25 Jun 2020 08:51:22 +0000

OSCP Cheatsheet

General Enumeration - Nmap

Replace $ip with target IP