OSCP prep - Machine walkthrough & avoiding rabbit holes and report taking techniques
Рет қаралды 2,834
Күн бұрынBit of a longer video today, but I am going through the seppuku machine on PGP and walking through note taking techniques for an OSCP exam report. Thanks for watching!
@pwolbrycht 6 күн бұрын
Fantastic walkthrough, thank you.
@Dadstin 3 ай бұрын
🔥 nice, i just did this box. Loved the commentary, i take my oscp this Friday
@redfire-359 3 ай бұрын
Good luck!
@jdgdd2ad 2 ай бұрын
Did you pass?
@ellerionsnow3340 12 күн бұрын
The minute you put vim in I screamed. Great video though.
@sandeepd145 3 ай бұрын
Please make video on report writing
@AUBCodeII 3 ай бұрын
Thank you very much for making this video, bro. I'm currently doing retired HTB boxes to train for the OSCP exam. So far I've completed almost 50. How many PWK lab machines have you completed before taking the OSCP exam?
@iSgapetti 3 күн бұрын
26:13 what is the proof-of-concept section of the report for? Is it the PoC for exploit code? So in this case, that would be N/A?
@redfire-359 3 күн бұрын
Yes its for the code you use, and yeah if its not a program (i.e. manual exploitation) there's no code so you can put N/A. For code you get from github you can just include the link and maybe a code snippet if you had to modify something.
@mafiadaniel94 3 ай бұрын
Does the OSCP exam has this many rabbit holes as well? The challenge machines OSCP A B and C weren't that full of rabbit holes.
@redfire-359 3 ай бұрын
Depending on the exam you get, yes there could be a couple, I don't know exact numbers. And Offsec doesn't always put them in there intentionally but sometimes its just easy to get tunnel visioned on a port or service if its out of date, looks like it has an exploit available, etc.
@kodeish 2 ай бұрын
Could you please share your notes? I liked how they were organized. It's okay to remove any OSCP copyright stuff
@cedrOcs Ай бұрын
Isn't enum4linux prohibited on oscp?
@spoon2k 3 ай бұрын
Is this machine retired on PG? I can't find it. Subbed!
@redfire-359 3 ай бұрын
Yeup its still in the providing grounds play VM list, you could also get it here www.vulnhub.com/entry/seppuku-1,484/ Thanks for the sub!
@Siik94Skillz 2 ай бұрын
Budddy... It's proving grounds! Good video, tho @redfire-359
@ver4576 Ай бұрын
If this is supposed to be "easy" and a actual OSCP machine would be "hard" then I'm giga F*d, this did not look easy at all and the rabbit holes would ruin me
@phillydee3592 Ай бұрын
Go for the low hanging fruit first..
@fatewalker6463 3 ай бұрын
I have a question, I've made a lot of command alias and custom scripts to automate recon tasks, do I have to provide all my command alias and scripts code in the report? Would appreciate to get a reply
@ArvindJuneja Ай бұрын
I mean the report require that someone else using it should be able to „root the box” doing all steps included. If you skip some parts that is not filling up the requirements and goal of the reporting part