kvmjewel.blogg.se - Pwk oscp windows vm

Metasploit unleashed by Offensive Security: Vivek Ramachandran’s Metasploit Megaprimer Videos: Especially the Metasploit post-exploitation modules. Metasploit is a very powerful tool and it is necessary for all the pen testers to know how to use it. Sometimes research on simple concepts will give good ideas on enumeration, for e.g., How SSH works, How service runs on ports, How Sockets works etc. Check out various videos on YouTube on basic concepts such as port-scanning, web application testing, etc.An awesome simple tutorial by Vivek Ramachandran is preferable If you are not aware of programming languages, it is highly recommended to learn one.Pro-tip: If you have more time in your hands and want to Learn Linux in a fun way, you can try the wargames here Practice all the common commands, and refer the man page for each of these commands. If you are new to Linux, refer the Linux command guide.

If you are not a newbie in Pen testing and aware of buffer overflow exploitation, you can skip this section and start enrolling.įor the rest, you need to cover the following aspects: Basics We will divide the OSCP journey into 2 phases:

Lots of interest, patience, and enthusiasm.

Ability to read and understand the flow of public exploits.

Once you are confident in your pentest skills after practicing in labs, you can take the exam. To practice various attacks and approaches, you will be given access to an online lab which has 55 machines of different versions of both Windows and Linux. Where one machine will be for exploit writing and which holds maximum points, while the others will be for enumeration, exploitation, and post-exploitation. The OSCP certification will be awarded on successfully cracking 5 machines in 23.45 hours. OSCP preparation, lab, and the exam is an awesome journey where you will experience lots of excitement, pain, suffering, frustration, confidence, and motivation where learning will be constant throughout the journey. Those should be figured out by you on your own. Here I will not be explaining the technical concepts. I will also share some resources that I found useful during my preparation. In this blog, I will provide you with a strategy for OSCP preparation.

Even I was once an amateur before starting on my OSCP journey. If you are a newbie in Penetration Testing and afraid of OSCP preparation, do not worry.