In this article, we have explained 12 tips of OSCP for beginners.
[sc_fs_faq headline="h2″ question="What is OSCP" css_class=""] Offensive Security Certified Professional (OSCP) is an ethical hacking certification offered by Offensive Security that teaches penetration testing methodologies and the use of the tools included with the Kali Linux distribution (successor of BackTrack). The OSCP is a hands-on penetration testing certification, requiring holders to successfully attack and penetrate various live machines in a safe lab environment. It is considered more technical than other ethical hacking certifications, and is one of the few certifications that requires evidence of practical penetration testing skills. Source: Wikipedia [/sc_fs_faq]
The course leading up to the OSCP certification was first offered in 2006 under the name "Offensive Security 101". Students expecting a 101 course were not prepared for the level of effort the course requires, so the name was changed to "Pentesting With BackTrack" in December 2008, and again to "Penetration Testing With Kali Linux" when the BackTrack distribution was rebuilt as Kali.
Here are the 12 tips of OSCP for beginners:
Continuously read more write ups! I know, it’s a typical recommendation that each other OSCP will give however trust me it will work!
Follow the unbelievable Ippsec. On his Youtube channel you will get the chance to become familiar with a ton of procedures. Just watching his video won’t help, so make appropriate notes.
Practice, Practice and Practice!
OSCP labs + HTB + Vulnhub would be sufficient.
Prior to my test, I watched John Hammond’s video and he offered one helpful guidance.
“Try harder mantra won’t work every time, so take a break, refresh your mind and then again Try harder!”
As test is for 24 hours so it’s imperative to take breaks as often as possible else you will get depleted.
Confused when it come’s to Buffer Overflow? Indeed, follow Cyber Mentor’s BoF arrangement and I promise you that it’s probably the best instructional exercise for BoF!
I know Privilege Escalation is a bad dream as an beginner, the most well-known tools which will help you as per the following:
While exploitation if you find any suspicious technique/ technology/ software/ binary. Simply use https://ippsec.rocks/ to search for. 99% of time it gave me accurate results.
OSCP Exam is about TIME MANAGEMENT, so ensure you invest enough energy in the individual machine contingent on the imprints distribution. If you get stuck then make a note and go ahead for another machine.
During your exam, make sure you scan your target machines properly. As this scan results you are going to refer for next 24 hours so make sure they are perfect.
After compromising your target, it is significant that you gather essential evidences like taking POC of local.txt, proof.txt and so on.
Reporting is very important part, as it reflects how exactly you compromised your target so make sure you have all the necessary POCs and use a nice template. I’ll recommend use following one:
Last but not least, if you fail in your 1st attempt don’t feel demotivated. OSCP is just an exam, it’s not like an end of the world. So chill and introspect yourself and identify where things got wrong.
I hope so this tips will help you guys for your OSCP journey. If you like this post share it with your friends!
[Need assistance to fix this error or install tools? We’ll help you.]