Like I mentioned at the end of last weeks post, I moved away from HackTheBox this week and studied on the PentesterLab site. This is a relatively new service that focuses on web application penetration testing, providing a wide range of systems that can be used to practice exploiting specific vulnerabilities. With approximately 200 exercises … Continue reading PentesterLab: First Impression Review
I continued on with more HackTheBox machines this week, and have now managed to rack up 25 total. As usual for these types of posts, I'll detail some of the things I learned from each machine - but will not be covering them in enough depth to class them as complete guides. One of the … Continue reading OSCP Week 17: HackTheBox (Part 5)
I took a break over the weekend and generally relaxed more during the week, so was only able to go through three retired HackTheBox machines. As such, this post will be shorter than usual, but I found some interesting things in these machines so I hope the post is still worthwhile. CronOS The hostname for … Continue reading OSCP Week 16: HackTheBox (Part 4)
Like the title states, I failed my first attempt at the OSCP exam last week. I came close, really close, but unfortunately couldn't quite get myself over the line. This post will cover the exam attempt itself, why I failed and what I'm going to do from here. The Exam Attempt My exam started at … Continue reading I Failed the OSCP Exam. Here’s Why.
I initially thought that my exam was going to be the Friday just gone, but I quickly realized I had underestimated how much time I had, and found myself with another week to prepare for the OSCP exam. After some thought about what I should do with this newfound time, I decided to set myself … Continue reading OSCP Week 15: Mock Exam (HackTheBox Part 3)
In the same vein as last week, I went through some more HackTheBox machines this week in preparation for my OSCP exam. Below are my quick thoughts and key takeaways for each of the machines I attempted. Arctic Similar to a machine seen in the OSCP, Arctic is a relatively straightforward web application exploit. Making … Continue reading OSCP Week 14: HackTheBox (Part 2)
My first week of OSCP study without access to the OSCP lab environment! I decided to take it a little easy and give myself a bit of a break, but still went through a decent number of retired machines on the HackTheBox network. For each machine, I watched the IppSec video in full to gain … Continue reading OSCP Week 13: HackTheBox (Part 1)