Yet Another OSCP Post (study buddy edition 6.0)

JosephMatthew

Still on two boxes. Managed some RDP DOS stuff on a couple of boxes. No luck in getting into anymore boxes, though. Been spending a ton of time on it. I'll get there eventually.

Hugbear

Just curious are you using metasploit or modifying code. I started off modifying code and got into the habit of using metasploit. I am now going back to modifying code as I think that metasploit is really not going to be my friend going forward.

I guess now I now that an exploit has to work (as I did it with metasploit) and if it doesn't it is a problem with my code.

unkn0wnsh3ll

Hi Hugbear

Good job, great you got around 15 boxes, I got around 7 boxes so far...catch you sometime this week...

Cheers

sh4nx0r

Guys, I strongly suggest not to team-up for OSCP. I recommend you to experience the pain in solitary than studying it together, only then you will realize the real beauty of the course and it is the right way to learn.

Btw, admins are online most of the time on the IRC channel and are ready to guide and give a nudge in the right direction. Well, I never pinged them during my OSCP journey, I had 45 days of sleep-deprived nights.

If you do the labs honestly, you will clear the exam on your very first attempt.

JosephMatthew

I am modifying all of my own code. I get progress piece by piece, but I'd rather "holistically" perform my own exploits with .py .pl. .c and .sh scripts. And slowly, but surely the pieces are coming together. Good job on snagging 7 boxes. I'll be there soon!

ilikeshells

I start at 8PM EST tonight! I cannot wait!

zorianix

Hi Guys , just saw the thread, count me in as well, i started on 22 August.

ilikeshells

I'm taking the exam tonight. Any last minute sage advice?

impelse

Let us know.

ilikeshells

Long story short: I failed but it was close.

I'll be retaking at the end of the month. I think time management (and lack of taking a break) was my biggest mistake.

Jebjeb

Any insight into how the test compared to the labs? I've seen some mention that a couple apps present int eh labs were featured in some of the exams, and most commonly a buffer overflow exploit.

ilikeshells

The test is comparable to the lab machines in terms of difficulty. That's all I can really say about that.

JosephMatthew

Good luck next time. I've pwned a ton of boxes, probably going to keep getting lab time until I get them all. How long did it take for you to hear back your results?

impelse

I heard you need to be good and privilege escalation to pass this exam, for me that's the most difficult part.

Sheiko37

I also hear privilege escalation is a weak point for many in the exam, which isn't surprising since there's only 8 pages in the book on the topic, and it could potentially relate to half of the exam.